CVE-2020-25219 log

Source
Severity Low
Remote Yes
Type Denial of service
Description
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP PAC server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion.
Group Package Affected Fixed Severity Status Ticket
AVG-1227 lib32-libproxy 0.4.15-2 Low Vulnerable
AVG-1226 libproxy, libproxy-mozjs, libproxy-webkit 0.4.15+33+g454a499-2 Low Vulnerable
References
https://github.com/libproxy/libproxy/issues/134
https://github.com/libproxy/libproxy/pull/136