[ELSA-2023-16656] squid security update
[7:4.15-3.0.3.1]
- Add libtool-ltdl to squid Requires: [Orabug: 34992040]
[ - 7:4.15-3.0.1.1]
- Obsolete squid-sysvinit [Jira: OLDIS-20090]
[7:4.15-3.1]
- Resolves: #2100782 - CVE-2021-46784 squid:4/squid: DoS when processing gopher
server responses
[7:4.15-3]
- Resolves: #1941506 - CVE-2021-28116 squid:4/squid: out-of-bounds read in WCCP
protocol data may lead to information disclosure
[7:4.15-2]
- Resolves: #2006121 - SQUID shortens FTP Link wrong that contains a semi-colon
and as a result is not able to download zip file.CODE 404 TO CLIENT)
[7:4.15-1]
- new version 4.15
- Resolves: #1964384 - squid:4 rebase to 4.15
[7:4.11-5]
- Resolves: #1944261 - CVE-2020-25097 squid:4/squid: improper input validation
may allow a trusted client to perform HTTP Request Smuggling
[7:4.11-4]
- Resolves: #1890606 - Fix for CVE 2019-13345 breaks authentication in
cachemgr.cgi
Package | Affected Version |
---|---|
pkg:rpm/oraclelinux/squid?distro=oraclelinux-7.9 | < 4.15-3.0.3.el7_9.1 |
pkg:rpm/oraclelinux/squid?distro=oraclelinux-7 | < 4.15-3.0.1.el7.1 |
- ID
- ELSA-2023-16656
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2023-16656.html
- Published
-
2023-02-15T00:00:00
(19 months ago) - Modified
-
2023-02-15T00:00:00
(19 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
- ALAS-2023-1677
- ALAS2-2023-1907
- ALSA-2022:5526
- ALSA-2022:5527
- DSA-5171-1
- ELSA-2022-5526
- ELSA-2022-5527
- ELSA-2022-5542
- FEDORA-2022-0fa51087e7
- FEDORA-2022-d22a045d7a
- RHSA-2022:5526
- RHSA-2022:5527
- RHSA-2022:5542
- RLSA-2022:5526
- SUSE-SU-2022:2359-1
- SUSE-SU-2022:2367-1
- SUSE-SU-2022:2392-1
- SUSE-SU-2022:2553-1
- USN-5491-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2023-16656 | https://linux.oracle.com/errata/ELSA-2023-16656.html | |
CVE | CVE-2021-46784 | https://linux.oracle.com/cve/CVE-2021-46784.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/squid?distro=oraclelinux-7.9 | oraclelinux | squid | < 4.15-3.0.3.el7_9.1 | oraclelinux-7.9 | ||
Affected | pkg:rpm/oraclelinux/squid?distro=oraclelinux-7 | oraclelinux | squid | < 4.15-3.0.1.el7.1 | oraclelinux-7 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |