Lucene search

K
redhatRedHatRHSA-2024:1832
HistoryApr 16, 2024 - 10:29 a.m.

(RHSA-2024:1832) Important: squid:4 security update

2024-04-1610:29:10
access.redhat.com
8
squid proxy caching server
security update
denial of service
http chunked decoding
http header parser
cve-2024-25111
cve-2024-25617
cvss score
references section
unix

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

Squid is a high-performance proxy caching server for web clients, supporting
FTP, and HTTP data objects.

Security Fix(es):

  • squid: Denial of Service in HTTP Chunked Decoding (CVE-2024-25111)

  • squid: denial of service in HTTP header parser (CVE-2024-25617)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.