Release date:
2026-04-29 07:08:43 UTC
Description:
- CVE-2019-12521: fix ESI parser off-by-one heap overflow by enforcing a
stack-depth limit and throwing on overflow
- CVE-2019-12524 already addressed by the CVE-2019-12520 backport (same
fix upstream; see Squid advisory SQUID-2019:4)
Updated packages:
-
squid-3.1.23-30.el6.tuxcare.els18.x86_64.rpm
sha:510ddaf338cd833a90a0607cd36ab9938a4812c01271ba0f45519fded5dc61e1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
