CVE-2015-1030
EPSS 0.53%
Description
Memory leak in the rfc2553_connect_to function in jbsocket.c in Privoxy before 3.0.22 allows remote attackers to cause a denial of service (memory consumption) via a large number of requests that are rejected because the socket limit is reached.
How to fix CVE-2015-1030
To remediate CVE-2015-1030, upgrade the affected package to a fixed version below.
- Debian/privoxy—upgrade to 3.0.21-5 or later
Is CVE-2015-1030 being exploited?
Low — EPSS is 0.5%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 3.0.21-5