Lucene search
+L

86 matches found

OSV
OSV
added 2022/10/06 7:22 a.m.9 views

SUSE-SU-2022:3533-1 Security update for squid

This update for squid fixes the following issues: - CVE-2022-41317: Fixed exposure of sensitive information in cache manager bsc1203677. - CVE-2022-41318: Fixed buffer overread in SSPI and SMB Authentication bsc1203680...

8.6CVSS7.5AI score0.0282EPSS
Exploits0References5
OSV
OSV
added 2022/07/12 1:13 p.m.6 views

SUSE-SU-2022:2367-1 Security update for squid

This update for squid fixes the following issues: - CVE-2021-46784: Fixed DoS when processing gopher server responses. bsc1200907 - CVE-2021-33620: Fixed DoS in HTTP Response processing bsc1185923, bsc1186654...

6.5CVSS6.8AI score0.79583EPSS
Exploits0References6
OSV
OSV
added 2022/07/12 7:37 a.m.8 views

SUSE-SU-2022:2359-1 Security update for squid

This update for squid fixes the following issues: - CVE-2021-46784: Fixed DoS when processing gopher server responses. bsc1200907 - Update to 5.6: - Improve handling of Gopher responses - Changes in 5.5: - fixes regression Bug 5192: esiparser default is incorrect - Bug 5177: clientca certificates...

6.5CVSS6.8AI score0.04513EPSS
Exploits0References3
OSV
OSV
added 2022/03/14 2:17 p.m.6 views

SUSE-SU-2022:14908-1 Security update for squid

This update for squid fixes the following issues: - CVE-2020-15810: Fixed a HTTP Request Smuggling that could have resulted in cache poisoning bsc1175664. - CVE-2019-12523: Disabled urn parsing and parsing of unknown schemes bsc1156329. - CVE-2019-18676: Disabled urn parsing and parsing of unknow...

9.1CVSS7.9AI score0.0918EPSS
Exploits0References6
OSV
OSV
added 2021/10/20 2:18 p.m.5 views

OPENSUSE-SU-2021:3485-1 Security update for squid

This update for squid fixes the following issues: Update to version 4.17: - CVE-2021-28116: Fixed a out-of-bounds read in the WCCP protocol bsc1189403...

5.3CVSS5.1AI score0.13005EPSS
Exploits0References3
OSV
OSV
added 2021/10/11 3:3 p.m.7 views

SUSE-SU-2021:3334-1 Security update for squid

This update for squid fixes the following issues: Update to version 4.17: - CVE-2021-28116: Fixed a out-of-bounds read in the WCCP protocol bsc1189403...

5.3CVSS5.2AI score0.13005EPSS
Exploits0References3
OSV
OSV
added 2021/06/11 10:56 a.m.6 views

SUSE-SU-2021:1961-1 Security update for squid

This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing bsc1185918 - CVE-2021-28651: Memory leak in RFC 2169 response parsing bsc1185921 - CVE-2021-28662: Limit HeaderLookupTablet::lookup to BadHdr and specific IDs bsc1185919 -...

8.6CVSS6.3AI score0.95785EPSS
Exploits4References14
OSV
OSV
added 2021/06/02 2:28 p.m.4 views

SUSE-SU-2021:1838-1 Security update for squid

This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing bsc1185918 - CVE-2021-28651: Memory leak in RFC 2169 response parsing bsc1185921 - CVE-2021-28662: Limit HeaderLookupTablet::lookup to BadHdr and specific IDs bsc1185919 -...

8.6CVSS6.3AI score0.95785EPSS
Exploits4References14
OSV
OSV
added 2020/09/03 7:3 a.m.5 views

SUSE-SU-2020:2471-1 Security update for squid

This update for squid fixes the following issues: - CVE-2020-24606: Fix livelocking in peerDigestHandleReply bsc1175671. - CVE-2020-15811: Improve Transfer-Encoding handling bsc1175665. - CVE-2020-15810: Enforce token characters for field-name bsc1175664...

8.6CVSS7.5AI score0.05162EPSS
Exploits0References7
OSV
OSV
added 2020/07/17 12:15 p.m.9 views

SUSE-SU-2020:1946-1 Security update for squid

This update for squid fixes the following issues: - CVE-2020-15049.patch: fixes a Cache Poisoning and Request Smuggling attack CVE-2020-15049, bsc1173455...

9.9CVSS9.4AI score0.05706EPSS
Exploits0References3
OSV
OSV
added 2020/06/30 11:53 a.m.5 views

SUSE-SU-2020:1803-1 Security update for squid

This update for squid fixes the following issues: - CVE-2020-14059: Fixed an issue where a client could potentially deny the service of a server during TLS Handshake bsc1173304. - CVE-2019-18860: Fixed handling of invalid domain names in cachemgr.cgi bsc1167373...

6.5CVSS7.6AI score0.055EPSS
Exploits0References5
OSV
OSV
added 2020/06/26 6:3 a.m.5 views

SUSE-SU-2020:1769-1 Security update for squid

This update for squid fixes the following issues: squid was updated to version 4.12 Security issue fixed: - CVE-2020-14059: Fixed an issue where a client could potentially deny the service of a server during TLS Handshake bsc1173304. Other issues addressed: - Reverted to slow search for new SMP s...

6.5CVSS6.7AI score0.04408EPSS
Exploits0References3
OSV
OSV
added 2020/05/08 12:14 p.m.6 views

SUSE-SU-2020:1227-1 Security update for squid

This update for squid fixes the following issues: - CVE-2019-12519, CVE-2019-12521: fixes incorrect buffer handling that can result in cache poisoning, remote execution, and denial of service attacks when processing ESI responses bsc1169659. - CVE-2020-11945: fixes a potential remote execution...

9.8CVSS7.8AI score0.27246EPSS
Exploits0References9
OSV
OSV
added 2020/05/03 10:32 a.m.8 views

OPENSUSE-SU-2020:0606-1 Security update for squid

This update for squid to version 4.10 fixes the following issues: Security issues fixed: - CVE-2019-12528: Fixed an information disclosure flaw in the FTP gateway bsc1162689. - CVE-2020-8449: Fixed a buffer overflow when squid is acting as reverse-proxy bsc1162687. - CVE-2020-8450: Fixed a buffer...

7.5CVSS7.7AI score0.7179EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2020/04/15 7:14 p.m.33 views

CVE-2019-12520

An issue was discovered in Squid through 4.7 and 5. When receiving a request, Squid checks its cache to see if it can serve up a response. It does this by making a MD5 hash of the absolute URL of the request. If found, it servers the request. The absolute URL can include the decoded UserInfo...

7.5CVSS6.5AI score0.03935EPSS
Exploits0
OSV
OSV
added 2020/03/12 4:1 p.m.12 views

SUSE-SU-2020:0661-1 Security update for squid

This update for squid fixes the following issues: - CVE-2019-12528: Fixed an information disclosure flaw in the FTP gateway bsc1162689. - CVE-2019-12526: Fixed potential remote code execution during URN processing bsc1156326. - CVE-2019-12523,CVE-2019-18676: Fixed multiple improper validations in...

9.8CVSS8.2AI score0.7179EPSS
Exploits0References19
OSV
OSV
added 2019/11/26 9:20 a.m.15 views

SUSE-SU-2019:3067-1 Security update for squid

This update for squid to version 4.9 fixes the following issues: Security issues fixed: - CVE-2019-13345: Fixed multiple cross-site scripting vulnerabilities in cachemgr.cgi bsc1140738. - CVE-2019-12526: Fixed potential remote code execution during URN processing bsc1156326. -...

9.8CVSS8.7AI score0.74477EPSS
Exploits1References14
OSV
OSV
added 2019/09/12 7:9 p.m.10 views

MGASA-2019-0266 Updated squid packages fix security vulnerabilities

Updated squid packages fix security vulnerabilities: It was discovered that Squid incorrectly handled Digest authentication. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service CVE-2019-12525. It was discovered that Squid incorrectly handled...

9.8CVSS8.7AI score0.74477EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/09/03 1:56 a.m.143 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.9AI score0.49037EPSS
Exploits0References2
OSV
OSV
added 2019/08/08 9:51 a.m.7 views

SUSE-SU-2019:2089-1 Security update for squid

This update for squid fixes the following issues: Security issue fixed: - CVE-2019-12529: Fixed a potential denial of service associated with HTTP Basic Authentication credentials bsc1141329. - CVE-2019-12525: Fixed a denial of service during processing of HTTP Digest Authentication credentials...

9.8CVSS7.4AI score0.74477EPSS
Exploits1References7
Rows per page
Query Builder