Not a user yet?
Log in Register for free Suggest a product
Update

USN-7140-1: Tinyproxy vulnerability

Ubuntu DesktopUbuntu Desktop
Canonical

USN-7140-1: Tinyproxy vulnerability
9 December 2024

tinyproxy could be made to expose sensitive information.

Releases
Ubuntu 22.04 LTS Ubuntu 20.04 LTS Ubuntu 18.04 ESM Ubuntu 16.04 ESM

Packages
tinyproxy - Lightweight, non-caching, optionally anonymizing HTTP proxy

Details
It was discovered that Tinyproxy did not properly manage memory under
certain circumstances. An attacker could possibly use this issue to leak
left-over heap data if custom error page templates containing special
non-standard variables are used.

Update instructions
The problem can be corrected by updating your system to the following package versions:

Ubuntu 22.04

  • tinyproxy - 1.11.0-1ubuntu0.1~esm1
  • tinyproxy-bin - 1.11.0-1ubuntu0.1~esm1

Ubuntu 20.04

  • tinyproxy - 1.10.0-4ubuntu0.1
  • tinyproxy-bin - 1.10.0-4ubuntu0.1

Ubuntu 18.04

  • tinyproxy - 1.8.4-5ubuntu0.1~esm2
  • tinyproxy-bin - 1.8.4-5ubuntu0.1~esm2

Ubuntu 16.04

  • tinyproxy - 1.8.3-3ubuntu16.04.1~esm2

In general, a standard system update will make all the necessary changes.

More updatesTo the product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Receive Important Update Messages Stay tuned for upcoming Canonical updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad