url.cpp in libproxy through 0.4.15 is prone to a buffer overflow when PAC is enabled, as demonstrated by a large PAC file that is delivered without a Content-length header.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | libproxy | < 0.4.15-15 | libproxy_0.4.15-15_all.deb |
Debian | 11 | all | libproxy | < 0.4.15-15 | libproxy_0.4.15-15_all.deb |
Debian | 10 | all | libproxy | < 0.4.15-5+deb10u1 | libproxy_0.4.15-5+deb10u1_all.deb |
Debian | 999 | all | libproxy | < 0.4.15-15 | libproxy_0.4.15-15_all.deb |
Debian | 13 | all | libproxy | < 0.4.15-15 | libproxy_0.4.15-15_all.deb |