Gentoo FoundationMGASA-2015-0191

HistoryMay 05, 2015 - 4:36 p.m.

Updated squid packages fix CVE-2015-3455

2015-05-0516:36:50

Gentoo Foundation

advisories.mageia.org

0.017 Low

EPSS

Percentile

87.6%

JSON

Updated squid packages fix security vulnerability: Squid configured with client-first SSL-bump does not correctly validate X509 server certificate domain / hostname fields (CVE-2015-3455).

OSVersionArchitecturePackageVersionFilename
Mageia4noarchsquid< 3.3.14-1squid-3.3.14-1.mga4

OS	Version	Architecture	Package	Version	Filename
Mageia	4	noarch	squid	< 3.3.14-1	squid-3.3.14-1.mga4

References

www.squid-cache.org/Advisories/SQUID-2015_1.txt

bugs.mageia.org/show_bug.cgi?id=15802

securityvulns 2

archlinux 1

centos 1

nessus 11

redhat 1

cvelist 1

openvas 7

ubuntucve 1

prion 1

oraclelinux 1

cve 1

freebsd 1

debiancve 1

checkpoint_advisories 1

fedora 2

securityvulns

squid insufficient certificate validation

2015-05-11 00:00:00

[ MDVSA-2015:230 ] squid

2015-05-11 00:00:00

archlinux

squid: weak certificate validation

2015-05-01 00:00:00

centos

squid security update

2015-11-30 19:52:33

nessus

Scientific Linux Security Update : squid on SL7.x x86_64 (20151119)

2015-12-22 00:00:00

Squid 3.2 < 3.5.4 Incorrect X509 Server Certificate Validation Vulnerability

2015-05-19 00:00:00

FreeBSD : squid -- client-first SSL-bump does not correctly validate X509 server certificate (b6da24da-23f7-11e5-a4a5-002590263bf5)

2015-07-07 00:00:00

redhat

(RHSA-2015:2378) Moderate: squid security and bug fix update

2015-11-19 13:41:16

cvelist

CVE-2015-3455

2015-05-18 15:00:00

openvas

Mageia: Security Advisory (MGASA-2015-0191)

2022-01-28 00:00:00

Squid SSL-Bump Certificate Validation Bypass Vulnerability (SQUID-2015:1)

2015-09-08 00:00:00

Oracle: Security Advisory (ELSA-2015-2378)

2015-11-24 00:00:00

ubuntucve

CVE-2015-3455

2015-05-18 00:00:00

prion

Code injection

2015-05-18 15:59:00

oraclelinux

squid security and bug fix update

2015-11-23 00:00:00

cve

CVE-2015-3455

2015-05-18 15:59:00

freebsd

squid -- client-first SSL-bump does not correctly validate X509 server certificate

2015-05-01 00:00:00

debiancve

CVE-2015-3455

2015-05-18 15:59:00

checkpoint_advisories

Multiple Vendors TLS Certificate Common Name NULL Byte Input Validation Error (CVE-2015-3008; CVE-2015-3455)

2015-05-21 00:00:00

fedora

[SECURITY] Fedora 22 Update: libecap-1.0.0-1.fc22

2016-05-06 19:58:05

[SECURITY] Fedora 22 Update: squid-3.5.10-1.fc22

2016-05-06 19:58:05

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

Updated squid packages fix CVE-2015-3455

References

Related