Lucene search
SuseSUSE-SA:2007:012HistoryJan 23, 2007 - 12:13 p.m.
remote denial of service in squid
2007-01-2312:13:41
lists.opensuse.org
10
0.969 High
EPSS
Percentile
99.6%
This update fixes a remotely exploitable denial-of-service bug in squid that can be triggered by using special ftp:// URLs. (CVE-2007-0247) Additionally the 10.2 package needed a fix for another DoS bug (CVE-2007-0248) and for max_user_ip handling in ntlm_auth.
Solution
No temporary work-around known.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 10.1 | i586 | squid | < 2.5.STABLE12-18.6 | squid-2.5.STABLE12-18.6.i586.rpm |
| openSUSE | 10.0 | i586 | squid | < 2.5.STABLE10-5.5 | squid-2.5.STABLE10-5.5.i586.rpm |
| openSUSE | 9.3 | i586 | squid | < 2.5.STABLE9-4.9 | squid-2.5.STABLE9-4.9.i586.rpm |
| openSUSE | 10.1 | ppc | squid | < 2.5.STABLE12-18.6 | squid-2.5.STABLE12-18.6.ppc.rpm |
| openSUSE | 10.0 | x86_64 | squid | < 2.5.STABLE10-5.5 | squid-2.5.STABLE10-5.5.x86_64.rpm |
| openSUSE | 9.3 | x86_64 | squid | < 2.5.STABLE9-4.9 | squid-2.5.STABLE9-4.9.x86_64.rpm |
| openSUSE | 10.2 | i586 | squid | < 2.6.STABLE6-0.4 | squid-2.6.STABLE6-0.4.i586.rpm |
| openSUSE | 10.1 | x86_64 | squid | < 2.5.STABLE12-18.6 | squid-2.5.STABLE12-18.6.x86_64.rpm |
| openSUSE | 10.2 | x86_64 | squid | < 2.6.STABLE6-0.4 | squid-2.6.STABLE6-0.4.x86_64.rpm |
| openSUSE | 10.2 | ppc | squid | < 2.6.STABLE6-0.4 | squid-2.6.STABLE6-0.4.ppc.rpm |
Related
openvas
openvas
SLES9: Security update for squid
2009-10-10 00:00:00
Mandriva Update for squid MDKSA-2007:026 (squid)
2009-04-09 00:00:00
Gentoo Security Advisory GLSA 200701-22 (squid)
2008-09-24 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 6.10 : squid vulnerabilities (USN-414-1)
2007-11-10 00:00:00
GLSA-200701-22 : Squid: Multiple Denial of Service vulnerabilities
2007-01-26 00:00:00
SuSE9 Security Update : squid (YOU Patch Number 11402)
2009-09-24 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2007-01-25 00:00:00
securityvulns
securityvulns
Multiple Squid cache proxy security vulnerability
2007-01-17 00:00:00
gentoo
gentoo
Squid: Multiple Denial of Service vulnerabilities
2007-01-25 00:00:00
prion
prion
Design/Logic Flaw
2007-01-16 18:28:00
Design/Logic Flaw
2007-01-16 18:28:00
ubuntucve
ubuntucve
CVE-2007-0248
2007-01-16 00:00:00
CVE-2007-0247
2007-01-16 00:00:00
cve
cve
CVE-2007-0248
2007-01-16 18:28:00
CVE-2007-0247
2007-01-16 18:28:00
debiancve
debiancve
CVE-2007-0248
2007-01-16 18:28:00
CVE-2007-0247
2007-01-16 18:28:00
fedora
fedora
[SECURITY] Fedora Core 5 Update: squid-2.5.STABLE14-3.FC5
2007-01-17 16:32:06
checkpoint_advisories
checkpoint_advisories
Squid Proxy FTP URI Processing Denial of Service (CVE-2007-0247)
2009-11-25 00:00:00