-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4282-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff August 31, 2018 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : trafficserver CVE ID : CVE-2018-1318 CVE-2018-8004 CVE-2018-8005 CVE-2018-8040 Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in denial of service, cache poisoning or information disclosure. For the stable distribution (stretch), these problems have been fixed in version 7.0.0-6+deb9u2. We recommend that you upgrade your trafficserver packages. For the detailed security status of trafficserver please refer to its security tracker page at: https://security-tracker.debian.org/tracker/trafficserver Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAluJt/4ACgkQEMKTtsN8 TjaT5Q/+L/g2xpJSDlMXj9hrYcSHpKwJ9DYbxHROlgYlHkaJK/q6KMX4qzqilyIG 6qCwkEEnvIxSoO/CgWJrSo87JgVu6dQ5fY6rokLGYdLd4y1SXGNQWEV5vBgKiXXV nGa1Ev/uPL/G5149E6WsvSEWY5eMOhlmqrZWy/fwIBZgGSKhsCmYMgRDT+2qTyDb 12hRwxelyoCebWaQ/7s+OgZKRBHbdl8VbS+9jJGU5X9wNKhfEIGvoB1+8ZJLS/Cz ZGTDi1nzNYPBILqTim2E4Dl2je2Am/KeQ1vmLG5DQIYkWTo1ZN/CUQcruDoaZ2ZX W3afSoR/FERtcNI9IFRXCPzAEt7EOo7ml06Lj0iJx/ysIETPWqWM7eQPBEiwz00U SBh1QVXY5C92hpQmWylABHm3Dd4X2ShImH+W3te/dRA9dHmvsySh9ABpTT6AUs/+ or7hKlKaYEW+vQiLpAUENgYpuAASKOLIjM4XZrb79GZdeNYvv6XkCvDo0nfk+2za JCZDQNif45m4Z4N9Mdo0qj/1vZom/wTKl0muAH9BPf1sXdStFDE6X+Me3jSG3gbP rid2GQuQ9dR2bY+a24C5zcPqqfrvmBJLCuv9oSxdx9ljHBs1ySqzzVa2g0vap5O9 3+OfwEMu7fbofklkmWfoeAUuE+OBcfRYmZMo4gdouzEIUgx41tM= =TNdT -----END PGP SIGNATURE-----