Lucene search
OracleLinuxELSA-2024-0046HistoryJan 04, 2024 - 12:00 a.m.
squid:4 security update
2024-01-0400:00:00
linux.oracle.com
13
squid
security
update
ssl
dos
gopher protocol
http
buffer over-read
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
7.1 High
AI Score
Confidence
Low
0.019 Low
EPSS
Percentile
88.7%
libecap
squid
[7:4.15-7.5]
- Fix squid: Denial of Service in SSL Certificate validation (CVE-2023-46724)
- Fix squid: NULL pointer dereference in the gopher protocol code (CVE-2023-46728)
- Fix squid: Buffer over-read in the HTTP Message processing feature (CVE-2023-49285)
- Fix squid: Incorrect Check of Function Return Value In Helper Process management(CVE-2023-49286)
[7:4.15-7.3] - Fix squid: DoS against HTTP and HTTPS (CVE-2023-5824)
[7:4.15-7.1] - Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest
Authentication - Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1
and ICAP
Related
nessus
nessus
RHEL 8 : squid:4 (RHSA-2024:0046)
2024-01-03 00:00:00
Rocky Linux 8 : squid:4 (RLSA-2024:0046)
2024-01-09 00:00:00
AlmaLinux 9 : squid (ALSA-2024:0071)
2024-01-08 00:00:00
almalinux
almalinux
Important: squid security update
2024-01-08 00:00:00
Important: squid:4 security update
2024-01-03 00:00:00
osv
osv
Important: squid:4 security update
2024-01-09 04:07:10
Important: squid security update
2024-01-08 00:00:00
Important: squid:4 security update
2024-01-03 00:00:00
redhat
redhat
(RHSA-2024:0071) Important: squid security update
2024-01-08 07:56:43
(RHSA-2024:0046) Important: squid:4 security update
2024-01-03 20:53:49
(RHSA-2024:0072) Important: squid security update
2024-01-08 07:56:48
oraclelinux
oraclelinux
squid security update
2024-01-10 00:00:00
squid security update
2024-04-11 00:00:00
rocky
rocky
squid:4 security update
2024-01-09 04:07:10
openvas
openvas
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2024-1301)
2024-03-12 00:00:00
Fedora: Security Advisory for squid (FEDORA-2023-6317eaa767)
2023-12-29 00:00:00
Fedora: Security Advisory for squid (FEDORA-2023-ab77331a34)
2023-12-29 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: squid-6.6-1.fc39
2023-12-29 01:14:29
[SECURITY] Fedora 38 Update: squid-6.6-1.fc38
2023-12-29 01:05:39
cloudlinux
cloudlinux
squid34: Fix of 2 CVEs
2023-12-21 18:27:26
squid: Fix of 2 CVEs
2023-12-21 18:30:15
squid: Fix of CVE-2023-46728
2023-12-13 19:38:56
amazon
amazon
Important: squid
2023-11-29 22:19:00
Important: squid
2023-11-10 17:32:00
Important: squid
2024-03-13 20:26:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0701
2023-12-19 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0689
2023-11-21 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0697
2023-12-06 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2024-01-23 00:00:00
Squid vulnerabilities
2023-11-21 00:00:00
Squid vulnerabilities
2023-12-11 00:00:00
debian
debian
[SECURITY] [DLA 3709-1] squid security update
2024-01-09 00:08:48
[SECURITY] [DSA 5637-1] squid security update
2024-03-08 14:36:16
mageia
mageia
Updated squid packages fix security vulnerabilities
2024-03-31 06:27:58
cve
cve
ubuntucve
ubuntucve
cvelist
cvelist
CVE-2023-49286 Denial of Service in Helper Process management
2023-12-04 22:53:44
CVE-2023-46724 SQUID-2023:4 Denial of Service in SSL Certificate validation
2023-11-01 19:09:34
CVE-2023-46728 SQUID-2021:8 Denial of Service in Gopher gateway
2023-11-06 17:13:45
nvd
nvd
redhatcve
redhatcve
alpinelinux
alpinelinux
prion
prion
Null pointer dereference
2023-11-06 18:15:00
Design/Logic Flaw
2023-12-04 23:15:00
Input validation
2023-11-01 20:15:00
debiancve
debiancve
veracode
veracode
Denial Of Service (DoS)
2023-11-10 05:38:32
Denial Of Service (DoS)
2023-12-05 06:44:34
Denial Of Service
2023-11-02 07:16:45
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
7.1 High
AI Score
Confidence
Low
0.019 Low
EPSS
Percentile
88.7%
Related for ELSA-2024-0046