22 matches found
SUSE CVE-2014-6270
Off-by-one error in the snmpHandleUdp function in snmpcore.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow...
Mageia: Security Advisory (MGASA-2014-0396)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:1996-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:1983-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0028-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-201607-01 : Squid: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201607-01 Squid: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Squid. Please review the CVE identifiers referenced below for details. Impact : An attacker can possibly execute arbitrary code or create a...
Ubuntu: Security Advisory (USN-2921-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : Squid vulnerabilities (USN-2921-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2921-1 advisory. Sebastian Krahmer discovered that Squid incorrectly handled certain SNMP requests. If SNMP is enabled, a remote attacker could use this issue to cause...
USN-2921-1: Squid vulnerabilities
Sebastian Krahmer discovered that Squid incorrectly handled certain SNMP requests. If SNMP is enabled, a remote attacker could use this issue to cause Squid to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2014-6270 Alex Rousskov discovered that Squid incorrectl...
SUSE SLES11 Security Update : squid (SUSE-SU-2015:1983-1)
squid was updated to fix two security issues. These security issues were fixed : - CVE-2014-6270: Fixed an off by one in snmp subsystem bsc895773. - CVE-2014-9749: Fixed a nonce replay vulnerability in Digest authentication bsc949942. Note that Tenable Network Security has extracted the preceding...
SUSE-SU-2015:1983-1 Security update for squid
squid was updated to fix two security issues. These security issues were fixed: - CVE-2014-6270: Fixed an off by one in snmp subsystem bsc895773. - CVE-2014-9749: Fixed a nonce replay vulnerability in Digest authentication bsc949942...
SUSE SLES12 Security Update : squid (SUSE-SU-2015:0028-1)
This squid updated fixes the following security update. - bnc895773: fix off-by-one in snmp subsystem CVE-2014-6270 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it...
Mandriva Linux Security Advisory : squid (MDVSA-2015:103)
Updated squid packages fix security vulnerabilities : Due to incorrect state management, Squid before 3.3.12 is vulnerable to a denial of service attack when processing certain HTTPS requests if the SSL-Bump feature is enabled CVE-2014-0128. Matthew Daley discovered that Squid 3 did not properly...
Fedora Update for squid FEDORA-2014-10790
Check the version of squid SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868398";...
Fedora Update for squid FEDORA-2014-10794
Check the version of squid SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868397";...
Fedora 19 : squid-3.3.13-2.fc19 (2014-10794)
This updated fixes CVE-2014-6270. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 ...
Fedora 21 : squid-3.4.7-2.fc21 (2014-10767)
This updated fixes CVE-2014-6270. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 ...
Updated squid packages fix security vulnerabilities
Updated squid packages fix security vulnerabilities: Due to incorrect buffer management Squid can be caused by an attacker to write outside its allocated SNMP buffer CVE-2014-6270. Due to incorrect bounds checking Squid pinger binary is vulnerable to denial of service or information leak attack...
CVE-2014-6270
Off-by-one error in the snmpHandleUdp function in snmpcore.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow...
CVE-2014-6270
Off-by-one error in the snmpHandleUdp function in snmpcore.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow...