[ELSA-2023-16656] squid security update
[7:4.15-3.0.3.1]
- Add libtool-ltdl to squid Requires: [Orabug: 34992040]
[ - 7:4.15-3.0.1.1]
- Obsolete squid-sysvinit [Jira: OLDIS-20090]
[7:4.15-3.1]
- Resolves: #2100782 - CVE-2021-46784 squid:4/squid: DoS when processing gopher
server responses
[7:4.15-3]
- Resolves: #1941506 - CVE-2021-28116 squid:4/squid: out-of-bounds read in WCCP
protocol data may lead to information disclosure
[7:4.15-2]
- Resolves: #2006121 - SQUID shortens FTP Link wrong that contains a semi-colon
and as a result is not able to download zip file.CODE 404 TO CLIENT)
[7:4.15-1]
- new version 4.15
- Resolves: #1964384 - squid:4 rebase to 4.15
[7:4.11-5]
- Resolves: #1944261 - CVE-2020-25097 squid:4/squid: improper input validation
may allow a trusted client to perform HTTP Request Smuggling
[7:4.11-4]
- Resolves: #1890606 - Fix for CVE 2019-13345 breaks authentication in
cachemgr.cgi
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/squid?distro=oraclelinux-7.9
|
< 4.15-3.0.3.el7_9.1 |
|
pkg:rpm/oraclelinux/squid?distro=oraclelinux-7
|
< 4.15-3.0.1.el7.1 |
- ID
- ELSA-2023-16656
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2023-16656.html
- Published
-
2023-02-15T00:00:00
(19 months ago) - Modified
-
2023-02-15T00:00:00
(19 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
-
ALAS-2023-1677
-
ALAS2-2023-1907
-
ALSA-2022:5526
-
ALSA-2022:5527
-
DSA-5171-1
-
ELSA-2022-5526
-
ELSA-2022-5527
-
ELSA-2022-5542
-
FEDORA-2022-0fa51087e7
-
FEDORA-2022-d22a045d7a
-
RHSA-2022:5526
-
RHSA-2022:5527
-
RHSA-2022:5542
-
RLSA-2022:5526
-
SUSE-SU-2022:2359-1
-
SUSE-SU-2022:2367-1
-
SUSE-SU-2022:2392-1
-
SUSE-SU-2022:2553-1
-
USN-5491-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2023-16656 |
|
|
| CVE | CVE-2021-46784 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/squid?distro=oraclelinux-7.9 | oraclelinux |
squid
|
< 4.15-3.0.3.el7_9.1 | oraclelinux-7.9 | ||
| Affected | pkg:rpm/oraclelinux/squid?distro=oraclelinux-7 | oraclelinux |
squid
|
< 4.15-3.0.1.el7.1 | oraclelinux-7 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |