Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
altlinuxHttps://packages.altlinux.org/en/sisyphus/security/F7336A12B4B581B50ACA516BE4EA6F7E
HistoryMar 16, 2020 - 12:00 a.m.

Security fix for the ALT Linux 9 package squid version 4.10-alt1

2020-03-1600:00:00
https://packages.altlinux.org/en/sisyphus/security/
packages.altlinux.org
13

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

4.10-alt1 built March 16, 2020 Alexey Shabalin in task #247850

March 14, 2020 Alexey Shabalin

- Updated to 4.10.
- Fixes:
  + CVE-2019-12526 Heap Overflow issue in URN processing.
  + CVE-2019-12523 Multiple issues in URI processing.
  + CVE-2019-18676 Multiple issues in URI processing.
  + CVE-2019-18677 Cross-Site Request Forgery issue in HTTP Request processing.
  + CVE-2019-18678 HTTP Request Splitting issue in HTTP message processing.
  + CVE-2019-18679 Information Disclosure issue in HTTP Digest Authentication.
  + CVE-2020-8449 Improper Input Validation issues in HTTP Request processing.
  + CVE-2020-8450 Improper Input Validation issues in HTTP Request processing.
  + CVE-2019-12528 Information Disclosure issue in FTP Gateway.
  + CVE-2020-8517 Buffer Overflow issue in ext_lm_group_acl helper.
OSVersionArchitecturePackageVersionFilename
ALT Linux9srcsquid< 4.10-alt1squid-4.10-alt1.src.rpm
ALT Linux9noarchsquid-doc< 4.10-alt1squid-doc-4.10-alt1.noarch.rpm
ALT Linux9x86_64squid-helpers< 4.10-alt1squid-helpers-4.10-alt1.x86_64.rpm
ALT Linux9x86_64squid-debuginfo< 4.10-alt1squid-debuginfo-4.10-alt1.x86_64.rpm
ALT Linux9x86_64squid< 4.10-alt1squid-4.10-alt1.x86_64.rpm
ALT Linux9x86_64squid-helpers-debuginfo< 4.10-alt1squid-helpers-debuginfo-4.10-alt1.x86_64.rpm
ALT Linux9aarch64squid-debuginfo< 4.10-alt1squid-debuginfo-4.10-alt1.aarch64.rpm
ALT Linux9aarch64squid< 4.10-alt1squid-4.10-alt1.aarch64.rpm
ALT Linux9aarch64squid-helpers< 4.10-alt1squid-helpers-4.10-alt1.aarch64.rpm
ALT Linux9aarch64squid-helpers-debuginfo< 4.10-alt1squid-helpers-debuginfo-4.10-alt1.aarch64.rpm
Rows per page:
1-10 of 181

Related

nessus 54
openvas 23
fedora 5
gentoo 1
mageia 2
ubuntu 4
osv 15
debian 3
suse 4
freebsd 2
archlinux 1
cloudlinux 2
oraclelinux 1
redhat 2
rocky 1
amazon 8
almalinux 1
ubuntucve 10
rosalinux 1
hackerone 5
centos 1
veracode 9
checkpoint_advisories 2
alpinelinux 5
debiancve 10
redhatcve 9
cve 8
prion 10
nessus
nessus
SUSE SLES12 Security Update : squid (SUSE-SU-2020:0661-1)
2020-03-13 00:00:00
Fedora 31 : 7:squid (2019-9538783033)
2019-12-05 00:00:00
EulerOS 2.0 SP5 : squid (EulerOS-SA-2020-1133)
2020-02-24 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1034)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1133)
2020-02-24 00:00:00
Fedora Update for squid FEDORA-2019-0b16cbdd0e
2019-12-08 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: squid-4.9-2.fc31
2019-12-05 01:42:38
[SECURITY] Fedora 30 Update: squid-4.9-2.fc30
2019-12-05 01:12:23
[SECURITY] Fedora 30 Update: squid-4.10-3.fc30
2020-04-03 18:03:14
gentoo
gentoo
Squid: Multiple vulnerabilities
2020-03-16 00:00:00
mageia
mageia
Updated squid packages fix security vulnerabilities
2019-12-13 21:25:24
Updated squid packages fix security vulnerabilities
2020-02-26 13:21:01
ubuntu
ubuntu
Squid vulnerabilities
2019-12-04 00:00:00
Squid vulnerabilities
2020-02-20 00:00:00
Squid vulnerabilities
2020-08-03 00:00:00
osv
osv
squid3 - security update
2019-12-10 00:00:00
squid - security update
2020-05-08 00:00:00
Moderate: squid:4 security, bug fix, and enhancement update
2020-11-03 12:32:17
debian
debian
[SECURITY] [DLA 2028-1] squid3 security update
2019-12-10 15:04:42
[SECURITY] [DSA 4682-1] squid security update
2020-05-08 19:10:03
[SECURITY] [DLA 2278-1] squid3 security update
2020-07-10 21:55:24
suse
suse
Security update for squid (moderate)
2020-03-06 00:00:00
Security update for squid (moderate)
2020-05-03 00:00:00
Security update for squid (important)
2019-11-21 00:00:00
freebsd
freebsd
Squid -- multiple vulnerabilities
2020-02-10 00:00:00
squid -- Vulnerable to HTTP Digest Authentication
2019-11-05 00:00:00
archlinux
archlinux
[ASA-201911-8] squid: multiple issues
2019-11-07 00:00:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2020-8450, CVE-2020-8517, CVE-2020-8449
2021-08-12 15:42:54
Fix of CVE: CVE-2020-8517, CVE-2021-28651, CVE-2020-15049, CVE-2020-8449, CVE-2020-8450, CVE-2020-24606, CVE-2020-25097, CVE-2020-11945, CVE-2020-14058
2021-09-21 22:10:21
oraclelinux
oraclelinux
squid:4 security, bug fix, and enhancement update
2020-11-10 00:00:00
redhat
redhat
(RHSA-2020:4743) Moderate: squid:4 security, bug fix, and enhancement update
2020-11-03 12:32:17
(RHSA-2020:4082) Important: squid security update
2020-09-30 00:17:14
rocky
rocky
squid:4 security, bug fix, and enhancement update
2020-11-03 12:32:17
amazon
amazon
Medium: squid
2020-09-01 00:40:00
Important: squid
2023-05-25 17:41:00
Important: squid
2023-05-25 17:41:00
almalinux
almalinux
Moderate: squid:4 security, bug fix, and enhancement update
2020-11-03 12:32:17
ubuntucve
ubuntucve
CVE-2019-18676
2019-11-26 00:00:00
CVE-2019-18679
2019-11-26 00:00:00
CVE-2020-8450
2020-02-04 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1976
2021-07-02 18:10:45
hackerone
hackerone
Internet Bug Bounty: HTTP Smuggling multiple issues in Squid 3.x & squid 4.x
2019-12-14 11:11:17
Internet Bug Bounty: Squid leaks previous content from reusable buffer
2020-03-18 22:01:47
Internet Bug Bounty: URN Request bypass ACL Checks
2020-03-19 18:17:10
centos
centos
squid security update
2020-11-06 22:15:00
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:28:22
Inappropriate Redirect
2020-09-21 06:32:58
HTTP Request Smuggling
2020-09-21 06:24:14
checkpoint_advisories
checkpoint_advisories
Squid Proxy Digest Nonce Information Disclosure (CVE-2019-18679)
2020-02-25 00:00:00
Squid Proxy Heap Buffer Overflow (CVE-2019-12526)
2020-03-01 00:00:00
alpinelinux
alpinelinux
CVE-2019-12528
2020-02-04 21:15:00
CVE-2019-18679
2019-11-26 17:15:00
CVE-2020-8517
2020-02-04 20:15:00
debiancve
debiancve
CVE-2019-18677
2019-11-26 17:15:00
CVE-2019-18678
2019-11-26 17:15:00
CVE-2019-18676
2019-11-26 17:15:00
redhatcve
redhatcve
CVE-2019-18676
2019-12-30 21:53:01
CVE-2019-12523
2020-04-06 17:10:37
CVE-2019-18679
2019-12-30 21:53:05
cve
cve
CVE-2019-18678
2019-11-26 17:15:00
CVE-2019-18676
2019-11-26 17:15:00
CVE-2019-12523
2019-11-26 17:15:00
prion
prion
Code injection
2019-11-26 17:15:00
Design/Logic Flaw
2019-11-26 17:15:00
Information disclosure
2019-11-26 17:15:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for F7336A12B4B581B50ACA516BE4EA6F7E
nessus54openvas23fedora5gentoo1mageia2ubuntu4osv15debian3suse4freebsd2archlinux1cloudlinux2oraclelinux1redhat2rocky1amazon8almalinux1ubuntucve10rosalinux1hackerone5centos1veracode9checkpoint_advisories2alpinelinux5debiancve10redhatcve9cve8prion10