DSA-2571-1 libproxy -- buffer overflowID: oval:org.secpod.oval:def:600913 | Date: (C)2012-11-06 (M)2022-10-10 |
Class: PATCH | Family: unix |
The Red Hat Security Response Team discovered that libproxy, a library for automatic proxy configuration management, applied insufficient validation to the Content-Length header sent by a server providing a proxy.pac file. Such remote server could trigger an integer overflow and consequently overflow an in-memory buffer.
Product: |
libproxy-dev |
libproxy-tools |
libproxy0 |
python-libproxy-dev |