Information on source package pound

Available versions

ReleaseVersion
jessie (security)2.6-6+deb8u1
stretch2.7-1.3

Open issues

BugjessiestretchDescription
CVE-2016-10711vulnerable (no DSA)vulnerable (no DSA)Apsis Pound before 2.8a allows request smuggling via crafted headers, a ...

Resolved issues

BugDescription
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other ...
CVE-2012-4929The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google ...
CVE-2011-3389The SSL protocol, as used in certain configurations in Microsoft ...
CVE-2009-3555The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as ...
CVE-2005-3751HTTP request smuggling vulnerability in Pound before 1.9.4 allows ...
CVE-2005-1391Buffer overflow in the add_port function in APSIS Pound 1.8.2 and ...
CVE-2004-2026Format string vulnerability in the logmsg function in svc.c for Pound ...

Security announcements

DSA / DLADescription
DLA-1280-1pound - security update
DLA-400-1pound - security update
DSA-3253-1pound - security update
DSA-3253-1pound - security update
DSA-934-1pound - remote

Search for package or bug name: Reporting problems