Lucene search
OracleLinuxELSA-2015-2378HistoryNov 23, 2015 - 12:00 a.m.
squid security and bug fix update
2015-11-2300:00:00
linux.oracle.com
9
0.016 Low
EPSS
Percentile
85.8%
[7:3.3.8-26]
- Related: #1186768 - removing patch, because of missing tests and
incorrent patch
[7:3.3.8-25] - Related: #1102842 - squid rpm package misses /var/run/squid needed for
smp mode. Squid needs write access to /var/run/squid.
[7:3.3.8-24] - Related: #1102842 - squid rpm package misses /var/run/squid needed for
smp mode. Creation of /var/run/squid was also needed to be in SPEC file.
[7:3.3.8-23] - Related: #1102842 - squid rpm package misses /var/run/squid needed for
smp mode. Creation of this directory was moved to tmpfiles.d conf file.
[7:3.3.8-22] - Related: #1102842 - squid rpm package misses /var/run/squid needed for
smp mode. Creation of this directory was moved to service file.
[7:3.3.8-21] - Resolves: #1263338 - squid with digest auth on big endian systems
start looping
[7:3.3.8-20] - Resolves: #1186768 - security issue: Nonce replay vulnerability
in Digest authentication
[7:3.3.8-19] - Resolves: #1225640 - squid crashes by segfault when it reboots
[7:3.3.8-18] - Resolves: #1102842 - squid rpm package misses /var/run/squid needed for
smp mode
[7:3.3.8-17] - Resolves: #1233265 - CVE-2015-3455 squid: incorrect X509 server
certificate validation
[7:3.3.8-16] - Resolves: #1080042 - Supply a firewalld service file with squid
[7:3.3.8-15] - Resolves: #1161600 - Squid does not serve cached responses
with Vary headers
[7:3.3.8-14] - Resolves: #1198778 - Filedescriptor leaks on snmp
[7:3.3.8-13] - Resolves: #1204375 - squid sends incorrect ssl chain breaking newer gnutls
using applications
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | squid | < 3.3.8-26.el7 | squid-3.3.8-26.el7.src.rpm |
| oracle linux | 7 | x86_64 | squid | < 3.3.8-26.el7 | squid-3.3.8-26.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | squid-sysvinit | < 3.3.8-26.el7 | squid-sysvinit-3.3.8-26.el7.x86_64.rpm |
Related
archlinux
archlinux
squid: weak certificate validation
2015-05-01 00:00:00
securityvulns
securityvulns
squid insufficient certificate validation
2015-05-11 00:00:00
[ MDVSA-2015:230 ] squid
2015-05-11 00:00:00
centos
centos
squid security update
2015-11-30 19:52:33
nessus
nessus
Squid 3.2 < 3.5.4 Incorrect X509 Server Certificate Validation Vulnerability
2015-05-19 00:00:00
FreeBSD : squid -- client-first SSL-bump does not correctly validate X509 server certificate (b6da24da-23f7-11e5-a4a5-002590263bf5)
2015-07-07 00:00:00
Scientific Linux Security Update : squid on SL7.x x86_64 (20151119)
2015-12-22 00:00:00
ubuntucve
ubuntucve
CVE-2015-3455
2015-05-18 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0191)
2022-01-28 00:00:00
Oracle: Security Advisory (ELSA-2015-2378)
2015-11-24 00:00:00
Squid SSL-Bump Certificate Validation Bypass Vulnerability (SQUID-2015:1)
2015-09-08 00:00:00
redhat
redhat
(RHSA-2015:2378) Moderate: squid security and bug fix update
2015-11-19 13:41:16
mageia
mageia
Updated squid packages fix CVE-2015-3455
2015-05-05 16:36:50
prion
prion
Code injection
2015-05-18 15:59:00
cve
cve
CVE-2015-3455
2015-05-18 15:59:00
freebsd
freebsd
debiancve
debiancve
CVE-2015-3455
2015-05-18 15:59:00
checkpoint_advisories
checkpoint_advisories
fedora
fedora
[SECURITY] Fedora 22 Update: libecap-1.0.0-1.fc22
2016-05-06 19:58:05
[SECURITY] Fedora 22 Update: squid-3.5.10-1.fc22
2016-05-06 19:58:05