3 matches found
CVE-2020-17508
The CVE-2020-17508 entry concerns Apache Traffic Server’s ATS ESI plugin, with a memory disclosure vulnerability. Affected are ATS/Plugin versions: 7.0.0–7.1.11 and 8.0.0–8.1.0. The available data state that upgrading the plugin is required; no additional exploit details, affected file paths, or ...
Debian DSA-4805-1 : trafficserver - security update
Two vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server : - CVE-2020-17508 The ESI plugin was vulnerable to memory disclosure. - CVE-2020-17509 The negative cache option was vulnerable to cache poisoning. C Tenable Network Security, Inc. The descriptive te...
[SECURITY] [DSA 4805-1] trafficserver security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4805-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 07, 2020 https://www.debian.org/security/faq -...