NuytsTech Security

CVE-2016-4556

by ·

Double free vulnerability in Esi.cc in Squid 3.x before 3.5.18 and 4.x before 4.0.10 allows remote servers to cause a denial of service (crash) via a crafted Edge Side Includes (ESI) response.

Date published : 2016-05-10

http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

http://www.squid-cache.org/Advisories/SQUID-2016_9.txt

Tags: