Several security issues were fixed in Privoxy.
Software Description:
- privoxy: Privacy enhancing HTTP Proxy
Details:
Joshua Rogers discovered that Privoxy incorrectly handled memory
allocation. An
attacker could possibly use this issue to cause a denial of service.
(CVE-2021-44540)
Artem Ivanov discovered that Privoxy incorrectly handled input
validations. An
attacker could possibly use this issue to perform cross-site scripting
(XSS) attacks.
(CVE-2021-44543)
The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: privoxy 3.0.28-2ubuntu0.2 Ubuntu 18.04 LTS: privoxy 3.0.26-5ubuntu0.3 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-5826-1
CVE-2021-44540, CVE-2021-44543
Get the latest Linux and open source security news straight to your inbox.