Debian 10261 Published by

A libproxy security update has been released for Debian GNU/Linux 8 Extended LTS to address a denial of service attack in libproxy.



ELA-282-1 libproxy security update

Package libproxy
Version 0.4.11-4+deb8u1
Related CVEs CVE-2020-25219

It was discovered that there was a denial of service attack in libproxy, a library to make applications HTTP proxy aware. A remote server could cause an infinite stack recursion.

For Debian 8 Jessie, these problems have been fixed in version 0.4.11-4+deb8u1.

We recommend that you upgrade your libproxy packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-282-1 libproxy security update