Candidate: CVE-2015-0881
PublicDate: 2015-02-20 11:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0881
 http://jvndb.jvn.jp/jvndb/JVNDB-2015-000019
 http://jvn.jp/en/jp/JVN64455813/index.html
Description:
 CRLF injection vulnerability in Squid before 3.1.1 allows remote attackers
 to inject arbitrary HTTP headers and conduct HTTP response splitting
 attacks via a crafted header in a response.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_squid:
upstream_squid: needs-triage
lucid_squid: ignored (reached end-of-life)
precise_squid: DNE
trusty_squid: DNE
trusty/esm_squid: DNE
utopic_squid: DNE
devel_squid: DNE

Patches_squid3:
upstream_squid3: released (3.1.10)
lucid_squid3: ignored (reached end-of-life)
precise_squid3: not-affected (3.1.19-1ubuntu3.12.04.3)
trusty_squid3: not-affected
trusty/esm_squid3: DNE (trusty was not-affected)
utopic_squid3: not-affected
devel_squid3: not-affected