Information on source package pound

Available versions

ReleaseVersion
jessie2.6-6+deb8u3
stretch2.7-1.3+deb9u1
bullseye3.0-2
trixie4.15-1
sid4.15-1

Resolved issues

BugDescription
CVE-2018-21245Pound before 2.8 allows HTTP request smuggling, a related issue to CVE ...
CVE-2016-10711Apsis Pound before 2.8a allows request smuggling via crafted headers, ...
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ...
CVE-2012-4929The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google C ...
CVE-2011-3389The SSL protocol, as used in certain configurations in Microsoft Windo ...
CVE-2009-3555The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as us ...
CVE-2005-3751HTTP request smuggling vulnerability in Pound before 1.9.4 allows remo ...
CVE-2005-1391Buffer overflow in the add_port function in APSIS Pound 1.8.2 and earl ...
CVE-2004-2026Format string vulnerability in the logmsg function in svc.c for Pound ...

Security announcements

DSA / DLADescription
DLA-2196-2pound - regression update
DLA-2196-1pound - security update
DLA-1280-1pound - security update
DLA-400-1pound - security update
DSA-3253-1pound - security update
DSA-934-1pound - remote

Search for package or bug name: Reporting problems