ELSA-2021-1135

ELSA-2021-1135 - squid security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2021-04-09

Description


[7:3.5.20-17.6]
- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
a trusted client to perform HTTP Request Smuggling


Related CVEs


CVE-2020-25097

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) squid-3.5.20-17.el7_9.6.src.rpm742e2ae0ba066ad083223bac92a1c671-
squid-3.5.20-17.el7_9.6.aarch64.rpme8ff2266aa37d09356d1e477cd2851e4-
squid-migration-script-3.5.20-17.el7_9.6.aarch64.rpm051e8c5a63909ec15b8153ac68e18ee6-
squid-sysvinit-3.5.20-17.el7_9.6.aarch64.rpm85de4c8e33f8567b6614f5976aa86f13-
Oracle Linux 7 (x86_64) squid-3.5.20-17.el7_9.6.src.rpm742e2ae0ba066ad083223bac92a1c671-
squid-3.5.20-17.el7_9.6.x86_64.rpm7d015e8c52229daa254191c4320cfe22-
squid-migration-script-3.5.20-17.el7_9.6.x86_64.rpm2ce6dbcf1298acf4621beb308a15e7cb-
squid-sysvinit-3.5.20-17.el7_9.6.x86_64.rpm324655fd743d13c58a01a24e96318f31-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete