Certain aborted requests that trigger an assertion in squid, the
popular WWW proxy cache, may allow remote attackers to cause a denial
of service. Â This update also fixes a regression caused by
DSA 751.
For completeness below is the original advisory text:
>
> Several vulnerabilities have been discovered in Squid, the popular WWW
> proxy cache. The Common Vulnerabilities and Exposures project
> identifies the following problems:
>
>
> * CAN-2005-2794
> Certain aborted requests that trigger an assert may allow remote
> attackers to cause a denial of service.
>
> * CAN-2005-2796
> Specially crafted requests can cause a denial of service.
>
>
>
For the oldstable distribution (woody) this problem has been fixed in
version 2.4.6-2woody10.
For the stable distribution (sarge) these problems have been fixed in
version 2.5.9-10sarge1.
For the unstable distribution (sid) these problems have been fixed in
version 2.5.10-5.
We recommend that you upgrade your squid package.