Lucene search

DebianDEBIAN:DSA-3460-1:268BA

HistoryJan 30, 2016 - 8:41 a.m.

[SECURITY] [DSA 3460-1] privoxy security update

2016-01-3008:41:36

lists.debian.org

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.7

Confidence

High

EPSS

0.031

Percentile

91.0%

JSON

Debian Security Advisory DSA-3460-1 [email protected]
https://www.debian.org/security/ Sebastien Delafond
January 30, 2016 https://www.debian.org/security/faq

Package : privoxy
CVE ID : CVE-2016-1982 CVE-2016-1983

It was discovered that privoxy, a web proxy with advanced filtering
capabilities, contained invalid reads that could enable a remote
attacker to crash the application, thus causing a Denial of Service.

For the oldstable distribution (wheezy), these problems have been fixed
in version 3.0.19-2+deb7u3.

For the stable distribution (jessie), these problems have been fixed in
version 3.0.21-7+deb8u1.

For the testing (stretch) and unstable (sid) distributions, these
problems have been fixed in version 3.0.24-1.

We recommend that you upgrade your privoxy packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8kfreebsd-i386privoxy< 3.0.21-7+deb8u1privoxy_3.0.21-7+deb8u1_kfreebsd-i386.deb
Debian7mipselprivoxy< 3.0.19-2+deb7u3privoxy_3.0.19-2+deb7u3_mipsel.deb
Debian8armelprivoxy< 3.0.21-7+deb8u1privoxy_3.0.21-7+deb8u1_armel.deb
Debian7s390xprivoxy< 3.0.19-2+deb7u3privoxy_3.0.19-2+deb7u3_s390x.deb
Debian7armhfprivoxy< 3.0.19-2+deb7u3privoxy_3.0.19-2+deb7u3_armhf.deb
Debian8powerpcprivoxy< 3.0.21-7+deb8u1privoxy_3.0.21-7+deb8u1_powerpc.deb
Debian8s390xprivoxy< 3.0.21-7+deb8u1privoxy_3.0.21-7+deb8u1_s390x.deb
Debian7ia64privoxy< 3.0.19-2+deb7u3privoxy_3.0.19-2+deb7u3_ia64.deb
Debian7kfreebsd-amd64privoxy< 3.0.19-2+deb7u3privoxy_3.0.19-2+deb7u3_kfreebsd-amd64.deb
Debian6amd64privoxy< 3.0.16-1+deb6u2privoxy_3.0.16-1+deb6u2_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	kfreebsd-i386	privoxy	< 3.0.21-7+deb8u1	privoxy_3.0.21-7+deb8u1_kfreebsd-i386.deb
Debian	7	mipsel	privoxy	< 3.0.19-2+deb7u3	privoxy_3.0.19-2+deb7u3_mipsel.deb
Debian	8	armel	privoxy	< 3.0.21-7+deb8u1	privoxy_3.0.21-7+deb8u1_armel.deb
Debian	7	s390x	privoxy	< 3.0.19-2+deb7u3	privoxy_3.0.19-2+deb7u3_s390x.deb
Debian	7	armhf	privoxy	< 3.0.19-2+deb7u3	privoxy_3.0.19-2+deb7u3_armhf.deb
Debian	8	powerpc	privoxy	< 3.0.21-7+deb8u1	privoxy_3.0.21-7+deb8u1_powerpc.deb
Debian	8	s390x	privoxy	< 3.0.21-7+deb8u1	privoxy_3.0.21-7+deb8u1_s390x.deb
Debian	7	ia64	privoxy	< 3.0.19-2+deb7u3	privoxy_3.0.19-2+deb7u3_ia64.deb
Debian	7	kfreebsd-amd64	privoxy	< 3.0.19-2+deb7u3	privoxy_3.0.19-2+deb7u3_kfreebsd-amd64.deb
Debian	6	amd64	privoxy	< 3.0.16-1+deb6u2	privoxy_3.0.16-1+deb6u2_amd64.deb