Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

openSUSE: 2021:0017-1 Important: Privoxy Memory Leak Resolutions

opensuse
Calendar Grey January 5, 2021
Dist Opensuse Esm H88
This release for Fedora tackles several enhancements for firewalld, boosting performance and safety. Discover further details about it.
An update that contains security fixes can now be installed

Description

This update for privoxy fixes the following issues:

privoxy was updated to 3.0.29:

* Fixed memory leaks when a response is buffered and the buffer limit is

reached or Privoxy is running out of memory. OVE-20201118-0001

* Fixed a memory leak in the show-status CGI handler when no action files

are configured OVE-20201118-0002

* Fixed a memory leak in the show-status CGI handler when no filter files

are configured OVE-20201118-0003

* Fixes a memory leak when client tags are active OVE-20201118-0004

* Fixed a memory leak if multiple filters are executed and the last one is

skipped due to a pcre error OVE-20201118-0005

* Prevent an unlikely dereference of a NULL-pointer that could result in a

crash if accept-intercepted-requests was enabled, Privoxy failed to get

the request destination from the Host header and a memory allocation

failed. OVE-20201118-0006

* Fixed memory leaks in the client-tags CGI handler when client tags...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory moderate security fix memory leak networking fixes openSUSE privoxy

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP2:

zypper in -t patch openSUSE-2021-17=1

Package List

- openSUSE Backports SLE-15-SP2 (aarch64 ppc64le s390x x86_64):

privoxy-3.0.29-bp152.4.3.1

- openSUSE Backports SLE-15-SP2 (noarch):

privoxy-doc-3.0.29-bp152.4.3.1

References

https://bugzilla.suse.com/1157449

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2021:0017-1
Rating: moderate
Affected Products: openSUSE Backports SLE-15-SP2 .

Topics%20covered

Topics Covered

security advisory moderate security fix memory leak networking fixes openSUSE privoxy

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here