Lucene search
SuseSUSE-SA:2005:008HistoryFeb 22, 2005 - 1:31 p.m.
remote denial of service in squid
2005-02-2213:31:16
lists.opensuse.org
7
0.97 High
EPSS
Percentile
99.7%
Squid is an Open Source web proxy. A remote attacker was potentially able to crash the Squid web proxy if the log_fqdn option was set to “on” and the DNS replies were manipulated.
Solution
Install the fixed packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 9.1 | i586 | squid | < 2.5.STABLE5-42.30 | squid-2.5.STABLE5-42.30.i586.rpm |
| openSUSE | 8.2 | i586 | squid | < 2.5.STABLE1-108 | squid-2.5.STABLE1-108.i586.rpm |
| openSUSE | 9.1 | x86_64 | squid | < 2.5.STABLE5-42.30 | squid-2.5.STABLE5-42.30.x86_64.rpm |
| openSUSE | 9.2 | i586 | squid | < 2.5.STABLE6-6.8 | squid-2.5.STABLE6-6.8.i586.rpm |
| openSUSE | 9.0 | x86_64 | squid | < 2.5.STABLE3-120 | squid-2.5.STABLE3-120.x86_64.rpm |
| openSUSE | 9.2 | x86_64 | squid | < 2.5.STABLE6-6.8 | squid-2.5.STABLE6-6.8.x86_64.rpm |
| openSUSE | 9.0 | i586 | squid | < 2.5.STABLE3-120 | squid-2.5.STABLE3-120.i586.rpm |
Related
openvas
openvas
SLES9: Security update for squid
2009-10-10 00:00:00
SLES9: Security update for squid
2009-10-10 00:00:00
FreeBSD Ports: squid
2008-09-04 00:00:00
nessus
nessus
SUSE-SA:2005:008: squid
2005-02-23 00:00:00
FreeBSD : squid -- correct handling of oversized HTTP reply headers (bfda39de-7467-11d9-9e1e-c296ac722cb3)
2005-07-13 00:00:00
RHEL 2.1 / 3 : squid (RHSA-2005:173)
2005-03-04 00:00:00
cert
cert
Squid fails to properly handle oversized reply headers
2005-02-04 00:00:00
Squid fails to parse empty access control lists correctly
2005-02-21 00:00:00
cve
cve
CVE-2005-0241
2005-05-02 04:00:00
CVE-2005-0446
2005-05-02 04:00:00
checkpoint_advisories
checkpoint_advisories
freebsd
freebsd
squid -- correct handling of oversized HTTP reply headers
2005-01-31 00:00:00
squid -- denial-of-service vulnerabilities
2005-01-16 00:00:00
debiancve
debiancve
CVE-2005-0241
2005-05-02 04:00:00
CVE-2005-0446
2005-05-02 04:00:00
ubuntucve
ubuntucve
CVE-2005-0241
2005-05-02 00:00:00
CVE-2005-0446
2005-05-02 00:00:00
redhat
redhat
(RHSA-2005:173) squid security update
2005-03-03 00:00:00
(RHSA-2005:201) squid security update
2005-03-16 00:00:00
(RHSA-2005:212) dhcp security update
2005-04-12 00:00:00
osv
osv
squid - mising input sanitising
2005-02-23 00:00:00
debian
debian
[SECURITY] [DSA 688-1] New squid packages fix denial of service
2005-02-23 11:09:45
[SECURITY] [DSA 688-1] New squid packages fix denial of service
2005-02-23 11:09:45
gentoo
gentoo
Squid: Denial of Service through DNS responses
2005-02-18 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2005-02-21 00:00:00
centos
centos
dhcp security update
2005-04-12 23:06:20
suse
suse
remote command execution in squid
2005-02-10 15:13:39