PublicDateAtUSN: 2021-03-09 14:15:00 UTC
Candidate: CVE-2021-20275
PublicDate: 2021-03-09 14:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20275
 https://www.openwall.com/lists/oss-security/2021/02/28/1
 https://www.privoxy.org/gitweb/?p=privoxy.git;a=commit;h=a912ba7bc9ce5855a810d09332e9d94566ce1521
 https://ubuntu.com/security/notices/USN-4886-1
Description:
 A flaw was found in privoxy before 3.0.32. A invalid read of size two may
 occur in chunked_body_is_complete() leading to denial of service.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_privoxy:
upstream_privoxy: released (3.0.32-1)
precise/esm_privoxy: DNE
trusty_privoxy: ignored (out of standard support)
trusty/esm_privoxy: released (3.0.21-7+deb8u1ubuntu0.1~esm1)
xenial_privoxy: released (3.0.24-1ubuntu0.1)
bionic_privoxy: released (3.0.26-5ubuntu0.1)
focal_privoxy: released (3.0.28-2ubuntu0.1)
groovy_privoxy: released (3.0.28-3ubuntu0.1)
hirsute_privoxy: ignored (reached end-of-life)
impish_privoxy: needed
jammy_privoxy: needed
devel_privoxy: needed