1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2024:0296-1

[SUSE-SU-2024:0296-1] Security update for squid

Severity Important
Affected Packages 4
CVEs 2
Info Packages References Vulnerabilities

Security update for squid

This update for squid fixes the following issues:

  • CVE-2023-50269: fixed X-Forwarded-For Stack Overflow. (bsc#1217654)
  • CVE-2024-23638: fixed Denial of Service attack against Cache Manager error responses. (bsc#1219131)
Package Affected Version
pkg:rpm/suse/squid?arch=x86_64&distro=sles-12&sp=5 < 4.17-4.41.1
pkg:rpm/suse/squid?arch=s390x&distro=sles-12&sp=5 < 4.17-4.41.1
pkg:rpm/suse/squid?arch=ppc64le&distro=sles-12&sp=5 < 4.17-4.41.1
pkg:rpm/suse/squid?arch=aarch64&distro=sles-12&sp=5 < 4.17-4.41.1
ID
SUSE-SU-2024:0296-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2024/suse-su-20240296-1/
Published
2024-02-01T10:33:25
(7 months ago)
Modified
2024-02-01T10:33:25
(7 months ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/squid?arch=x86_64&distro=sles-12&sp=5 suse squid < 4.17-4.41.1 sles-12 x86_64
Affected pkg:rpm/suse/squid?arch=s390x&distro=sles-12&sp=5 suse squid < 4.17-4.41.1 sles-12 s390x
Affected pkg:rpm/suse/squid?arch=ppc64le&distro=sles-12&sp=5 suse squid < 4.17-4.41.1 sles-12 ppc64le
Affected pkg:rpm/suse/squid?arch=aarch64&distro=sles-12&sp=5 suse squid < 4.17-4.41.1 sles-12 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date