This update for squid3 fixes the following issues:
Multiple issues in pinger ICMP processing. (CVE-2014-7141,
CVE-2014-7142)
CVE-2016-3947: Buffer overrun issue in pinger ICMPv6 processing.
(bsc#973782)
CVE-2016-4554: fix header smuggling issue in HTTP Request processing
(bsc#979010)
Fix multiple Denial of Service issues in HTTP Response processing.
(CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572, bsc#968392,
bsc#968393, bsc#968394, bsc#968395)
Regression caused by the DoS fixes above (bsc#993299)
CVE-2016-3948: Fix denial of service in HTTP Response processing
(bsc#973783)
CVE-2016-4051: fixes buffer overflow in cachemgr.cgi (bsc#976553)
CVE-2016-4052, CVE-2016-4053, CVE-2016-4054:
CVE-2016-4556: fixes double free vulnerability in Esi.cc (bsc#979008)
CVE-2015-5400: Improper Protection of Alternate Path (bsc#938715)
CVE-2014-6270: fix off-by-one in snmp subsystem (bsc#895773)
Memory leak in squid3 when using external_acl (bsc#976708)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
SUSE Linux Enterprise Server | 11.4 | ia64 | squid3 | < 3.1.23-8.16.30.1 | squid3-3.1.23-8.16.30.1.ia64.rpm |
SUSE Linux Enterprise Server | 11.4 | s390x | squid3 | < 3.1.23-8.16.30.1 | squid3-3.1.23-8.16.30.1.s390x.rpm |
SUSE Linux Enterprise Debuginfo | 11.4 | x86_64 | squid3-debuginfo | < 3.1.23-8.16.30.1 | squid3-debuginfo-3.1.23-8.16.30.1.x86_64.rpm |
SUSE Linux Enterprise Server | 11.4 | i586 | squid3 | < 3.1.23-8.16.30.1 | squid3-3.1.23-8.16.30.1.i586.rpm |
SUSE Linux Enterprise Server | 11.4 | ppc64 | squid3 | < 3.1.23-8.16.30.1 | squid3-3.1.23-8.16.30.1.ppc64.rpm |
SUSE Linux Enterprise Server | 11.4 | x86_64 | squid3 | < 3.1.23-8.16.30.1 | squid3-3.1.23-8.16.30.1.x86_64.rpm |
bugzilla.suse.com/895773
bugzilla.suse.com/902197
bugzilla.suse.com/938715
bugzilla.suse.com/963539
bugzilla.suse.com/967011
bugzilla.suse.com/968392
bugzilla.suse.com/968393
bugzilla.suse.com/968394
bugzilla.suse.com/968395
bugzilla.suse.com/973782
bugzilla.suse.com/973783
bugzilla.suse.com/976553
bugzilla.suse.com/976556
bugzilla.suse.com/976708
bugzilla.suse.com/979008
bugzilla.suse.com/979009
bugzilla.suse.com/979010
bugzilla.suse.com/979011
bugzilla.suse.com/993299