CVE-2014-3609: Denial of Service in Range header processing.
Ignore Range headers with unidentifiable byte-range values. If squid is
unable to determine the byte value for ranges, treat the header as
invalid.
For Debian 6 Squeeze, these issues have been fixed in squid3 version 3.1.6-1.2+squeeze4
CPE | Name | Operator | Version |
---|---|---|---|
squid3 | eq | 3.1.6-1.2 | |
squid3 | eq | 3.1.6-1.2+squeeze1 | |
squid3 | eq | 3.1.6-1.2+squeeze2 | |
squid3 | eq | 3.1.6-1.2+squeeze3 |