ELSA-2023-6805

ULN >
Oracle Linux Errata repository >
ELSA-2023-6805

ELSA-2023-6805 - squid security update

Type:	SECURITY
Severity:	CRITICAL
Release Date:	2023-11-08

Description

[7:3.5.20-17.0.1]
- Mutiple CVE fixes for squid [Orabug: 33146289]
- Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing (#778)
- Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing (#788)
- Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range requests (#790)
- Resolves: CVE-2021-33620 squid: Handle more partial responses (#791)

[7:3.5.20-17.9]
- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
(CVE-2023-46847)

Related CVEs

CVE-2023-46847

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	squid-3.5.20-17.0.1.el7_9.9.src.rpm	03fcf2f1144095b758c81580725d71a0	-	ol7_aarch64_latest
	squid-3.5.20-17.0.1.el7_9.9.src.rpm	03fcf2f1144095b758c81580725d71a0	-	ol7_aarch64_optional_latest
	squid-3.5.20-17.0.1.el7_9.9.src.rpm	03fcf2f1144095b758c81580725d71a0	-	ol7_aarch64_u9_patch
	squid-3.5.20-17.0.1.el7_9.9.aarch64.rpm	5b8daab90f96988e8a3d085a7671a8c7	-	ol7_aarch64_latest
	squid-3.5.20-17.0.1.el7_9.9.aarch64.rpm	5b8daab90f96988e8a3d085a7671a8c7	-	ol7_aarch64_u9_patch
	squid-migration-script-3.5.20-17.0.1.el7_9.9.aarch64.rpm	fad913fdcdd3875341ecbd3cd0ce83c5	-	ol7_aarch64_latest
	squid-migration-script-3.5.20-17.0.1.el7_9.9.aarch64.rpm	fad913fdcdd3875341ecbd3cd0ce83c5	-	ol7_aarch64_u9_patch
	squid-sysvinit-3.5.20-17.0.1.el7_9.9.aarch64.rpm	6733688da9c8737c0bc7e252c011290d	-	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	squid-3.5.20-17.0.1.el7_9.9.src.rpm	03fcf2f1144095b758c81580725d71a0	-	ol7_x86_64_latest
	squid-3.5.20-17.0.1.el7_9.9.src.rpm	03fcf2f1144095b758c81580725d71a0	-	ol7_x86_64_optional_latest
	squid-3.5.20-17.0.1.el7_9.9.src.rpm	03fcf2f1144095b758c81580725d71a0	-	ol7_x86_64_u9_patch
	squid-3.5.20-17.0.1.el7_9.9.x86_64.rpm	101b06524323ae7a2764df7bdd544af6	-	ol7_x86_64_latest
	squid-3.5.20-17.0.1.el7_9.9.x86_64.rpm	101b06524323ae7a2764df7bdd544af6	-	ol7_x86_64_u9_patch
	squid-migration-script-3.5.20-17.0.1.el7_9.9.x86_64.rpm	c30284cd081b5894861774ade0f5b2d5	-	ol7_x86_64_latest
	squid-migration-script-3.5.20-17.0.1.el7_9.9.x86_64.rpm	c30284cd081b5894861774ade0f5b2d5	-	ol7_x86_64_u9_patch
	squid-sysvinit-3.5.20-17.0.1.el7_9.9.x86_64.rpm	268238a16f70feb2a35212e928164039	-	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691