Source: squid Version: 4.9-2 Severity: important Tags: security upstream Hi,
The following vulnerability was published for squid. CVE-2019-12528[0]: | An issue was discovered in Squid before 4.10. It allows a crafted FTP | server to trigger disclosure of sensitive information from heap | memory, such as information associated with other users' sessions or | non-Squid processes. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2019-12528 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12528 [1] http://www.squid-cache.org/Advisories/SQUID-2020_2.txt Please adjust the affected versions in the BTS as needed. Regards, Salvatore
