[USN-5641-1] Squid vulnerabilities
Severity
Medium
Affected Packages
17
CVEs
2
Several security issues were fixed in Squid.
Mikhail Evdokimov discovered that Squid incorrectly handled cache manager
ACLs. A remote attacker could possibly use this issue to obtain sensitive
information. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04
LTS. (CVE-2022-41317)
It was discovered that Squid incorrectly handled SSPI and SMB
authentication. A remote attacker could use this issue to cause Squid to
crash, resulting in a denial of service, or possibly obtain sensitive
information. (CVE-2022-41318)
- ID
- USN-5641-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-5641-1
- Published
-
2022-09-26T16:23:50
(2 years ago) - Modified
-
2022-09-26T16:23:50
(2 years ago) - Other Advisories
-
- ALAS-2023-1677
- ALAS-2023-1687
- ALAS2-2023-1907
- ALAS2-2023-1950
- ALPINE:CVE-2022-41317
- ALPINE:CVE-2022-41318
- ALSA-2022:6775
- ALSA-2022:6839
- DSA-5258-1
- ELSA-2022-6775
- ELSA-2022-6815
- ELSA-2022-6839
- FEDORA-2022-102c59d287
- FEDORA-2022-23e6ee1fb9
- FEDORA-2022-c8cad41c95
- FREEBSD:F9ADA0B5-3D80-11ED-9330-080027F5FEC9
- RHSA-2022:6775
- RHSA-2022:6815
- RHSA-2022:6839
- RLSA-2022:6775
- SUSE-SU-2022:3531-1
- SUSE-SU-2022:3532-1
- SUSE-SU-2022:3533-1
- SUSE-SU-2022:3596-1
- USN-6857-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/squidclient?distro=jammy | ubuntu | squidclient | < 5.2-1ubuntu4.2 | jammy | ||
Affected | pkg:deb/ubuntu/squidclient?distro=focal | ubuntu | squidclient | < 4.10-1ubuntu1.7 | focal | ||
Affected | pkg:deb/ubuntu/squidclient?distro=bionic | ubuntu | squidclient | < 3.5.27-1ubuntu1.14 | bionic | ||
Affected | pkg:deb/ubuntu/squid?distro=jammy | ubuntu | squid | < 5.2-1ubuntu4.2 | jammy | ||
Affected | pkg:deb/ubuntu/squid?distro=focal | ubuntu | squid | < 4.10-1ubuntu1.7 | focal | ||
Affected | pkg:deb/ubuntu/squid?distro=bionic | ubuntu | squid | < 3.5.27-1ubuntu1.14 | bionic | ||
Affected | pkg:deb/ubuntu/squid3?distro=bionic | ubuntu | squid3 | < 3.5.27-1ubuntu1.14 | bionic | ||
Affected | pkg:deb/ubuntu/squid-purge?distro=jammy | ubuntu | squid-purge | < 5.2-1ubuntu4.2 | jammy | ||
Affected | pkg:deb/ubuntu/squid-purge?distro=focal | ubuntu | squid-purge | < 4.10-1ubuntu1.7 | focal | ||
Affected | pkg:deb/ubuntu/squid-purge?distro=bionic | ubuntu | squid-purge | < 3.5.27-1ubuntu1.14 | bionic | ||
Affected | pkg:deb/ubuntu/squid-openssl?distro=jammy | ubuntu | squid-openssl | < 5.2-1ubuntu4.2 | jammy | ||
Affected | pkg:deb/ubuntu/squid-common?distro=jammy | ubuntu | squid-common | < 5.2-1ubuntu4.2 | jammy | ||
Affected | pkg:deb/ubuntu/squid-common?distro=focal | ubuntu | squid-common | < 4.10-1ubuntu1.7 | focal | ||
Affected | pkg:deb/ubuntu/squid-common?distro=bionic | ubuntu | squid-common | < 3.5.27-1ubuntu1.14 | bionic | ||
Affected | pkg:deb/ubuntu/squid-cgi?distro=jammy | ubuntu | squid-cgi | < 5.2-1ubuntu4.2 | jammy | ||
Affected | pkg:deb/ubuntu/squid-cgi?distro=focal | ubuntu | squid-cgi | < 4.10-1ubuntu1.7 | focal | ||
Affected | pkg:deb/ubuntu/squid-cgi?distro=bionic | ubuntu | squid-cgi | < 3.5.27-1ubuntu1.14 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |