Gentoo Linux Security Advisory GLSA 200703-27 - Squid incorrectly handles TRACE requests that contain a Max-Forwards header field with value 0 in the clientProcessRequest() function. Versions less than 2.6.12 are affected.
42d27666ef13f7d2b8258d9fc62f38162ed04427a08651d282213a87b786a40a
Ubuntu Security Notice 441-1 - A flaw was discovered in Squid's handling of the TRACE request method which could lead to a crash. Remote attackers with access to the Squid server could send malicious TRACE requests, and cause a denial of service.
a91a9bdecd36057f62f2d946c0476466f9fb4b576aff763b68d81031407e2b90
Mandriva Linux Security Advisory - Due to an internal error Squid-2.6 is vulnerable to a denial of service attack when processing the TRACE request method. This problem allows any client trusted to use the service to perform a denial of service attack on the Squid service.
462ae1a336df1deaf247df7072ada040b0c6d14b56480b78c4739e9e3625a08a