FreeBSD Ports: trafficserver

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-0256

Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x before 3.1.3 does not properly allocate heap memory, which allows remote attackers to cause a denial of service daemon crash via a long HTTP Host header...

CVE-2012-0256

Apache Traffic Server is affected by CVE-2012-0256 due to a heap memory allocation bug that can be triggered by a long HTTP Host header, enabling a remote attacker to cause a DoS (daemon crash). Affected versions are 2.0.x and 3.0.x before 3.0.4 and 3.1.x before 3.1.3. The issue is a heap-based v...

Apache Traffic Server HTTP主机标头处理缓冲区溢出漏洞

BUGTRAQ ID: 52696 CVE ID: CVE-2012-0256 Apache Traffic Server（ATS或TS）是一个高性能的、可扩展的模块化HTTP/1.1缓存代理服务器。 Apache Traffic Server在HTTP协议的实现上存在堆溢出漏洞，通过发送特制的HTTP消息到受影响服务器可造成拒绝访问或执行任意代码。 0 Apache Group Traffic Server 厂商补丁： Apache Group ------------ 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://httpd.apache.org/...

[ANNOUNCE] Apache Traffic Server releases for security incident CVE-2012-0256

Everyone, Below is our announcement for the security issue reported to us from Codenomicon, via CERT-FI. All previous versions of Apache Traffic Server are vulnerable, and we urge users to upgrade to either v3.0.4 or v3.1.3 immediately. Both releases are available from our download site at...