openSUSE Security Update : Privoxy (openSUSE-2016-132)
Medium Nessus Plugin ID 88553
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update to Privoxy 3.0.24 fixes two minor security issues.
The vulnerabilities should not be exploitable in the binary as compiled in openSUSE.
- CVE-2016-1982: Corrupt chunk-encoded content could cause an invalid read (boo#963151)
- CVE-2016-1983: Empty Host headers in client requests could result in invalid reads (boo#963152)
This update also contains general bug fixes and improvements as well as white and blacklist updates.
SolutionUpdate the affected Privoxy packages.