logo
DATABASE RESOURCES PRICING ABOUT US

Important: squid

Description

**Issue Overview:** A flaw was found in the way Squid handled malformed HTTP Range headers. A remote attacker able to send HTTP requests to the Squid proxy could use this flaw to crash Squid. (CVE-2014-3609) A buffer overflow flaw was found in Squid's DNS lookup module. A remote attacker able to send HTTP requests to the Squid proxy could use this flaw to crash Squid. (CVE-2013-4115) **Affected Packages:** squid **Issue Correction:** Run _yum update squid_ to update your system. **New Packages:** i686:     squid-debuginfo-3.1.10-22.16.amzn1.i686     squid-3.1.10-22.16.amzn1.i686 src:     squid-3.1.10-22.16.amzn1.src x86_64:     squid-3.1.10-22.16.amzn1.x86_64     squid-debuginfo-3.1.10-22.16.amzn1.x86_64


Affected Package


OS OS Version Package Name Package Version
Amazon Linux 1 squid-debuginfo 3.1.10-22.16.amzn1
Amazon Linux 1 squid 3.1.10-22.16.amzn1
Amazon Linux 1 squid 3.1.10-22.16.amzn1
Amazon Linux 1 squid 3.1.10-22.16.amzn1
Amazon Linux 1 squid-debuginfo 3.1.10-22.16.amzn1

Related