Lucene search
OracleLinuxELSA-2020-2040HistoryMay 07, 2020 - 12:00 a.m.
squid security update
2020-05-0700:00:00
linux.oracle.com
56
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
[7:3.5.20-15.1]
- Resolves: #1828359 - CVE-2020-11945 squid: improper access restriction upon
Digest Authentication nonce replay could lead to remote code execution - Resolves: #1828360 - CVE-2019-12519 squid: improper check for new member in
ESIExpression::Evaluate allows for stack buffer overflow - Resolves: #1829772 - CVE-2019-12525 squid: parsing of header
Proxy-Authentication leads to memory corruption
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | squid | < 3.5.20-15.el7_8.1 | squid-3.5.20-15.el7_8.1.src.rpm |
| oracle linux | 7 | aarch64 | squid | < 3.5.20-15.el7_8.1 | squid-3.5.20-15.el7_8.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | squid-migration-script | < 3.5.20-15.el7_8.1 | squid-migration-script-3.5.20-15.el7_8.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | squid-sysvinit | < 3.5.20-15.el7_8.1 | squid-sysvinit-3.5.20-15.el7_8.1.aarch64.rpm |
| oracle linux | 7 | src | squid | < 3.5.20-15.el7_8.1 | squid-3.5.20-15.el7_8.1.src.rpm |
| oracle linux | 7 | x86_64 | squid | < 3.5.20-15.el7_8.1 | squid-3.5.20-15.el7_8.1.x86_64.rpm |
| oracle linux | 7 | x86_64 | squid-migration-script | < 3.5.20-15.el7_8.1 | squid-migration-script-3.5.20-15.el7_8.1.x86_64.rpm |
| oracle linux | 7 | x86_64 | squid-sysvinit | < 3.5.20-15.el7_8.1 | squid-sysvinit-3.5.20-15.el7_8.1.x86_64.rpm |
Related
nessus
nessus
Scientific Linux Security Update : squid on SL7.x x86_64 (20200506)
2020-05-07 00:00:00
CentOS 7 : squid (CESA-2020:2040)
2020-05-22 00:00:00
Oracle Linux 8 : squid:4 (ELSA-2020-2041)
2020-08-13 00:00:00
centos
centos
squid security update
2020-05-21 14:55:03
redhat
redhat
(RHSA-2020:2040) Important: squid security update
2020-05-06 12:46:17
(RHSA-2020:2041) Important: squid:4 security update
2020-05-06 12:52:10
(RHSA-2020:2039) Important: squid:4 security update
2020-05-06 12:46:24
osv
osv
Important: squid:4 security update
2020-05-06 12:52:10
Important: squid:4 security update
2020-05-06 12:52:10
CVE-2019-12525
2019-07-11 19:15:13
rocky
rocky
squid:4 security update
2020-05-06 12:52:10
almalinux
almalinux
Important: squid:4 security update
2020-05-06 12:52:10
oraclelinux
oraclelinux
squid:4 security update
2020-05-12 00:00:00
squid:4 security update
2020-09-04 00:00:00
squid security update
2020-10-08 00:00:00
openvas
openvas
CentOS: Security Advisory for squid (CESA-2020:2040)
2020-05-22 00:00:00
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1828)
2020-07-31 00:00:00
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2020-1931)
2020-09-04 00:00:00
amazon
amazon
Important: squid
2020-06-23 06:08:00
Important: squid
2020-06-01 12:25:00
Important: squid
2020-06-26 22:56:00
gentoo
gentoo
Squid: Multiple vulnerabilities
2020-05-12 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2020-05-13 00:00:00
Squid vulnerabilities
2019-07-22 00:00:00
Squid vulnerabilities
2019-07-18 00:00:00
debiancve
debiancve
prion
prion
Stack overflow
2020-04-15 20:15:00
Authentication flaw
2019-07-11 19:15:00
Design/Logic Flaw
2020-04-23 15:15:00
cve
cve
veracode
veracode
Denial Of Service (DoS)
2020-05-07 02:01:35
Remote Code Execution (RCE)
2020-05-07 02:01:36
Denial Of Service (DoS)
2020-05-07 02:01:36
ubuntucve
ubuntucve
mageia
mageia
Updated squid packages fix security vulnerability
2020-05-05 15:20:37
Updated squid packages fix security vulnerabilities
2019-09-12 22:09:52
Updated squid packages fix security vulnerabilities
2019-09-12 22:09:52
redhatcve
redhatcve
alpinelinux
alpinelinux
fedora
fedora
[SECURITY] Fedora 30 Update: squid-4.11-1.fc30
2020-05-16 04:21:08
[SECURITY] Fedora 31 Update: squid-4.11-1.fc31
2020-05-16 03:11:17
[SECURITY] Fedora 32 Update: squid-4.11-1.fc32
2020-05-16 03:40:02
suse
suse
Security update for squid (important)
2020-05-11 00:00:00
Security update for squid (important)
2019-11-21 00:00:00
Security update for squid (important)
2019-11-21 00:00:00
debian
debian
[SECURITY] [DLA 1858-1] squid3 security update
2019-07-20 23:09:33
[SECURITY] [DLA 2278-1] squid3 security update
2020-07-10 21:55:24
[SECURITY] [DSA 4507-1] squid security update
2019-08-24 11:46:36
altlinux
altlinux
Security fix for the ALT Linux 9 package squid version 4.8-alt1
2019-07-16 00:00:00
Security fix for the ALT Linux 8 package squid version 3.5.28-alt1
2019-08-27 00:00:00
cloudlinux
cloudlinux
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for ELSA-2020-2040