Debian Linux Security Advisory 5637-1 - Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid's HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow while performing HTTP Digest authentication. Other issues facilitate request smuggling past a firewall or a denial of service against Squid's Helper process management.
a79ef3e7a5505aef83c8e1d9026a34f64acecaa9ccd3e41b225ac5500d8a96e7Ubuntu Security Notice 6500-1 - Joshua Rogers discovered that Squid incorrectly handled validating certain SSL certificates. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS, Ubuntu 23.04, and Ubuntu 23.10. Joshua Rogers discovered that Squid incorrectly handled the Gopher protocol. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service. Gopher support has been disabled in this update. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04.
89e080ec0dca666e58acac5a17ad942076e2d2723e487a8ff043ca16623f5d78Red Hat Security Advisory 2023-7213-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
7f689e4cfcd326d9da5e56b620290f5a1ee11c218aaf6e495eb641fc2715856dRed Hat Security Advisory 2023-6810-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
e7af98fff32f2fe8aef082c45ae13567bf73784005358de86dd6c42714752115Red Hat Security Advisory 2023-6804-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
c6c8126b5b0e15979faf39a4d5afbf09b56d9f4588f5022e2d6b20e862dd6befRed Hat Security Advisory 2023-6803-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
1e2db83b66e3579fe1f1440985ca80e77a6ce75f401f69f5014a9f6b1314a513Red Hat Security Advisory 2023-6801-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include a denial of service vulnerability.
19d9a4b5280fde4aada0ea55e75e3ad6994073bbfae701302175cd2ffced43f1Red Hat Security Advisory 2023-6748-01 - An update for squid is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
56f37069d857ba89846484b2a52c2c63edcb3d37e59fe064b1f9129bd298f1eaRed Hat Security Advisory 2023-6268-01 - An update for squid is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Issues addressed include a denial of service vulnerability.
c3199fff8ed391bc77b92feebccc1d1019146c9325fae10496d481b32d44e3a6Red Hat Security Advisory 2023-6267-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
a3e42726e4e8c25aac4acbd033196c096105a21dab156551ed4945971b83020fRed Hat Security Advisory 2023-6266-01 - An update for squid is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
e831d8c70816b08d95c1060dc291152d3be3f2862be73b3c8c276b1c588d519a
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed