[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: squeeze update of squid3?

> Il giorno 23/lug/2015, alle ore 00:07, Ben Hutchings <benh@debian.org> ha scritto:
> 
> On Wed, 2015-07-22 at 23:02 +0200, Luigi Gangitano wrote:
>> Hi Ben,
>> 
>> Thanks for the heads up on LTS security issues in squid3.
>> 
>> We’ve already prepared an update for CVE-2015-5400 for jessie and are 
>> willing to contribute an update for squeeze to. The link you sent me 
>> is not working so I’m unable to check if other security issues are 
>> open and co-ordinate a single package update.
> 
> Sorry, I think this was the issue covered by
> <http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13849.patch>.
> That was removed from the tracker by
> <http://anonscm.debian.org/viewvc/secure-testing?view=revision&revision=35535>
> as it doesn't actually affect the Debian package.

Ok, so no need for an updated squid3 in LTS?

Regards,

L

--
Luigi Gangitano -- <luigi@debian.org> -- <gangitano@lugroma3.org>
GPG: 1024D/924C0C26: 12F8 9C03 89D3 DB4A 9972  C24A F19B A618 924C 0C26
GPG: 4096R/2BA97CED: 8D48 5A35 FF1E 6EB7 90E5  0F6D 0284 F20C 2BA9 7CED
Reply to: