Lucene search
OracleLinuxELSA-2024-1787HistoryApr 11, 2024 - 12:00 a.m.
squid security update
2024-04-1100:00:00
linux.oracle.com
6
squid
security update
cve fixes
improvements
rhel-16779
rhel-18176
rhel-18171
rhel-16758
rhel-19557
rhel-26082
[7:3.5.20-17.0.1]
- Mutiple CVE fixes for squid [Orabug: 33146289]
- Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing (#778)
- Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing (#788)
- Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range requests (#790)
- Resolves: CVE-2021-33620 squid: Handle more partial responses (#791)
[7:3.5.20-17.10] - Resolves: RHEL-16779 - squid: NULL pointer dereference in the gopher protocol
code – Remove support for Gopher protocol (CVE-2023-46728) - Resolves: RHEL-18176 - squid: Buffer over-read in the HTTP Message processing
feature (CVE-2023-49285) - Resolves: RHEL-18171 - squid: Incorrect Check of Function Return Value In
Helper Process management (CVE-2023-49286) - Resolves: RHEL-16758 - squid: Denial of Service in SSL Certificate validation
(CVE-2023-46724) - Resolves: RHEL-19557 - squid: denial of service in HTTP request parsing
(CVE-2023-50269) - Resolves: RHEL-26082 - squid: denial of service in HTTP header parser
(CVE-2024-25617)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | squid | < 3.5.20-17.0.1.el7_9.10 | squid-3.5.20-17.0.1.el7_9.10.src.rpm |
| oracle linux | 7 | src | squid | < 3.5.20-17.0.1.el7_9.10 | squid-3.5.20-17.0.1.el7_9.10.src.rpm |
| oracle linux | 7 | src | squid | < 3.5.20-17.0.1.el7_9.10 | squid-3.5.20-17.0.1.el7_9.10.src.rpm |
| oracle linux | 7 | aarch64 | squid | < 3.5.20-17.0.1.el7_9.10 | squid-3.5.20-17.0.1.el7_9.10.aarch64.rpm |
| oracle linux | 7 | aarch64 | squid | < 3.5.20-17.0.1.el7_9.10 | squid-3.5.20-17.0.1.el7_9.10.aarch64.rpm |
| oracle linux | 7 | aarch64 | squid-migration-script | < 3.5.20-17.0.1.el7_9.10 | squid-migration-script-3.5.20-17.0.1.el7_9.10.aarch64.rpm |
| oracle linux | 7 | aarch64 | squid-migration-script | < 3.5.20-17.0.1.el7_9.10 | squid-migration-script-3.5.20-17.0.1.el7_9.10.aarch64.rpm |
| oracle linux | 7 | aarch64 | squid-sysvinit | < 3.5.20-17.0.1.el7_9.10 | squid-sysvinit-3.5.20-17.0.1.el7_9.10.aarch64.rpm |
| oracle linux | 7 | src | squid | < 3.5.20-17.0.1.el7_9.10 | squid-3.5.20-17.0.1.el7_9.10.src.rpm |
| oracle linux | 7 | src | squid | < 3.5.20-17.0.1.el7_9.10 | squid-3.5.20-17.0.1.el7_9.10.src.rpm |
Related
nessus
nessus
RHEL 7 : squid (RHSA-2024:1787)
2024-04-11 00:00:00
Oracle Linux 7 : squid (ELSA-2024-1787)
2024-04-12 00:00:00
EulerOS 2.0 SP8 : squid (EulerOS-SA-2024-1301)
2024-03-12 00:00:00
redhat
redhat
(RHSA-2024:1787) Important: squid security update
2024-04-11 15:27:34
(RHSA-2024:0046) Important: squid:4 security update
2024-01-03 20:53:49
(RHSA-2024:0071) Important: squid security update
2024-01-08 07:56:43
openvas
openvas
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2024-1301)
2024-03-12 00:00:00
Fedora: Security Advisory for squid (FEDORA-2023-6317eaa767)
2023-12-29 00:00:00
Fedora: Security Advisory for squid (FEDORA-2023-ab77331a34)
2023-12-29 00:00:00
oraclelinux
oraclelinux
squid:4 security update
2024-01-04 00:00:00
squid security update
2024-01-10 00:00:00
squid security update
2024-03-20 00:00:00
osv
osv
Important: squid:4 security update
2024-01-09 04:07:10
Important: squid security update
2024-01-08 00:00:00
Important: squid:4 security update
2024-01-03 00:00:00
almalinux
almalinux
Important: squid security update
2024-01-08 00:00:00
Important: squid:4 security update
2024-01-03 00:00:00
Important: squid:4 security update
2024-03-19 00:00:00
rocky
rocky
squid:4 security update
2024-01-09 04:07:10
fedora
fedora
[SECURITY] Fedora 39 Update: squid-6.6-1.fc39
2023-12-29 01:14:29
[SECURITY] Fedora 38 Update: squid-6.6-1.fc38
2023-12-29 01:05:39
mageia
mageia
Updated squid packages fix security vulnerabilities
2024-03-31 06:27:58
ubuntu
ubuntu
Squid vulnerabilities
2024-01-23 00:00:00
Squid vulnerabilities
2023-11-21 00:00:00
Squid vulnerabilities
2023-12-11 00:00:00
debian
debian
[SECURITY] [DLA 3709-1] squid security update
2024-01-09 00:08:48
[SECURITY] [DSA 5637-1] squid security update
2024-03-08 14:36:16
amazon
amazon
Medium: squid
2024-01-03 21:04:00
Important: squid
2023-11-29 22:19:00
Important: squid
2024-02-01 19:57:00
cloudlinux
cloudlinux
squid: Fix of 2 CVEs
2023-12-21 18:30:15
squid34: Fix of 2 CVEs
2023-12-21 18:27:26
squid34: Fix of CVE-2023-50269
2024-01-23 16:33:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0701
2023-12-19 00:00:00
cve
cve
debiancve
debiancve
veracode
veracode
Denial Of Service (DoS)
2024-02-15 07:37:40
Denial Of Service (DoS)
2023-12-05 06:23:09
Denial Of Service (DoS)
2023-11-10 05:38:32
prion
prion
Design/Logic Flaw
2024-02-14 21:15:00
Null pointer dereference
2023-11-06 18:15:00
Design/Logic Flaw
2023-12-04 23:15:00
redhatcve
redhatcve
cvelist
cvelist
CVE-2024-25617 Denial of Service in HTTP Header parser in squid proxy
2024-02-14 20:55:52
CVE-2023-46724 SQUID-2023:4 Denial of Service in SSL Certificate validation
2023-11-01 19:09:34
CVE-2023-49286 Denial of Service in Helper Process management
2023-12-04 22:53:44
ubuntucve
ubuntucve
alpinelinux
alpinelinux