11 matches found
Oracle Solaris Third-Party Patch Update : squid (cve_2013_4123_input_validation)
The remote Solaris system is missing necessary patches to address security updates : - clientsiderequest.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header. CVE-2013-4123 %NASLMINLEVEL 70300 C...
Fedora Update for squid FEDORA-2014-10794
Check the version of squid SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868397";...
Fedora Update for squid FEDORA-2014-9963
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : squid (openSUSE-SU-2013:1435-1)
This squid update includes several security fixes and minor changes. - squid-3.2.x-11823-bnc829084-CVE-2013-4115.diff fixes a buffer overflow involving very long hostnames. bnc829084 CVE-2013-4115 - squid-3.2.x-11823-bnc830319-CVE-2013-4123.diff fixes problems identifying a port number as specifi...
Fedora Update for squid FEDORA-2014-4800
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Squid HTTP Host Header Port Handling Denial of Service (CVE-2013-4123)
A denial-of-service vulnerability exists in Squid proxy...
CVE-2013-4123
CVE-2013-4123 affects Squid: client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote denial of service via a crafted port number in a HTTP Host header. Connected advisories reference patches and updates across multiple distros (openSUSE, Fedora, Solaris patch upda...
Fedora Update for squid FEDORA-2013-13493
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : squid-3.2.13-1.fc19 (2013-13468)
This is security update that fixes CVE-2013-4123 and CVE-2013-4115. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora 18 : squid-3.2.13-1.fc18 (2013-13493)
This is security update that fixes CVE-2013-4123 and CVE-2013-4115. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Updated squid packages fix security vulnerabilities
Due to incorrect data validation Squid is vulnerable to a buffer overflow attack when processing specially crafted HTTP requests. This problem allows any trusted client or client script who can generate HTTP requests to trigger a buffer overflow in Squid, resulting in a termination of the Squid...