Your submission was sent successfully! Close

CVE-2021-20213

Published: 03 February 2021

A flaw was found in Privoxy in versions before 3.0.29. Dereference of a NULL-pointer that could result in a crash if accept-intercepted-requests was enabled, Privoxy failed to get the request destination from the Host header and a memory allocation failed.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
privoxy
Launchpad, Ubuntu, Debian
Upstream
Released (3.0.29-1)
Ubuntu 20.04 LTS (Focal Fossa)
Released (3.0.28-2ubuntu0.1)
Ubuntu 18.04 LTS (Bionic Beaver)
Released (3.0.26-5ubuntu0.1)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (3.0.24-1ubuntu0.1)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (3.0.21-7+deb8u1ubuntu0.1~esm1)