22 matches found
SLES10: Security update for Squid
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: squid More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText: 2009...
SLES9: Security update for squid
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: squid For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5024260 within the SuSE...
SLES9: Security update for squid
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: squid For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5024260 within the SuSE...
SuSE 10 Security Update : Squid (ZYPP Patch Number 5301)
A flaw in a previous previous security update could cause squid to crash under certain circumstances. CVE-2008-1612 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
SuSE9 Security Update : squid (YOU Patch Number 12135)
A flaw in a previous previous security update could cause squid to crash under certain circumstances. CVE-2008-1612 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Mandriva Linux Security Advisory : squid (MDVSA-2008:134)
An incorrect fix for CVE-2007-6239 resulted in Squid not performing proper bounds checking when processing cache update replies. Because of this, a remote authenticated user might have been able to trigger an assertion error and cause a denial of service CVE-2008-1612. The updated packages have...
Mandriva Update for squid MDVSA-2008:134 (squid)
Check for the Version of squid OpenVAS Vulnerability Test Mandriva Update for squid MDVSA-2008:134 squid Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Gentoo Security Advisory GLSA 200903-38 (Squid)
The remote host is missing updates announced in advisory GLSA 200903-38. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
GLSA-200903-38 : Squid: Multiple Denial of Service vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200903-38 Squid: Multiple Denial of Service vulnerabilities The arrayShrink function in lib/Array.c can cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an incorrect fix for...
Ubuntu Update for squid vulnerability USN-601-1
Ubuntu Update for Linux kernel vulnerabilities USN-601-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6011.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for squid vulnerability USN-601-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
CentOS Update for squid CESA-2008:0214 centos4 x86_64
Check for the Version of squid OpenVAS Vulnerability Test CentOS Update for squid CESA-2008:0214 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Fedora Update for squid FEDORA-2008-2740
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Debian Security Advisory DSA 1646-2 (squid)
The remote host is missing an update to squid announced via advisory DSA 1646-2. OpenVAS Vulnerability Test $Id: deb16462.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1646-2 squid Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
[SECURITY] [DSA 1646-2] New squid packages fix array bounds check
------------------------------------------------------------------------ Debian Security Advisory DSA-1646-2 [email protected] http://www.debian.org/security/ Devin Carraway October 11, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1646-1] New squid packages fix array bounds check
------------------------------------------------------------------------ Debian Security Advisory DSA-1646-1 [email protected] http://www.debian.org/security/ Devin Carraway October 07, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1646-1] New squid packages fix array bounds check
------------------------------------------------------------------------ Debian Security Advisory DSA-1646-1 [email protected] http://www.debian.org/security/ Devin Carraway October 07, 2008 http://www.debian.org/security/faq -...
SuSE 10 Security Update : squid (ZYPP Patch Number 5157)
A flaw in a previous previous security update could cause squid to crash under certain circumstances. CVE-2008-1612 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
openSUSE 10 Security Update : squid (squid-5155)
A flaw in a previous previous security update could cause squid to crash under certain circumstances CVE-2008-1612. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update squid-5155. The text...
Squid Web代理缓存arrayShrink()函数远程拒绝服务漏洞
BUGTRAQ ID: 28693 CVECAN ID: CVE-2008-1612 Squid是一个高效的Web缓存及代理程序,最初是为Unix平台开发的,现在也被移植到Linux和大多数的Unix类系统中,最新的Squid可以运行在Windows平台下。 Squid的arrayShrink函数操控系统内存中所储存的缓存对象的HTTP头的方式存在漏洞,攻击者可以利用这个漏洞导致squid子进程退出,这会中断已有连接,导致代理服务不可以。 Squid父进程会启动一个新的子进程,因此这种攻击仅会导致临时的拒绝服务。这个漏洞是由于没有正确地修复CVE-2007-6239中所述漏洞而导致的。...
CVE-2008-1612
The arrayShrink function lib/Array.c in Squid 2.6.STABLE17 allows attackers to cause a denial of service process exit via unknown vectors that cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an incorrect fix for CVE-2007-6239...