Debian Security Advisory

DLA-216-1 squid -- LTS security update

Date Reported:
01 May 2015
Affected Packages:
squid
Vulnerable:
Yes
Security database references:
In Mitre's CVE dictionary: CVE-2014-3609.
More information:
  • CVE-2014-3609

    Denial of Service in Range header processing.

    Ignore Range headers with unidentifiable byte-range values. If squid is unable to determine the byte value for ranges, treat the header as invalid.