ELBA-2024-3114

ELBA-2024-3114 - squid:4 bug fix and enhancement update

Type:BUG
Impact:NA
Release Date:2024-05-24

Description


libecap
squid
[7:4.15-10]
- Resolves: RHEL-28529 - squid:4/squid: Denial of Service in HTTP Chunked
Decoding (CVE-2024-25111)
- Resolves: RHEL-26088 - squid:4/squid: denial of service in HTTP header
parser (CVE-2024-25617)

[7:4.15-9]
- Resolves: RHEL-19552 - squid:4/squid: denial of service in HTTP request
parsing (CVE-2023-50269)

[7:4.15-8]
- Resolves: RHEL-18351 - squid:4/squid: Buffer over-read in the HTTP Message
processing feature (CVE-2023-49285)
- Resolves: RHEL-18342 - squid:4/squid: Incorrect Check of Function Return
Value In Helper Process management (CVE-2023-49286)
- Resolves: RHEL-18230 - squid:4/squid: Denial of Service in SSL Certificate
validation (CVE-2023-46724)
- Resolves: RHEL-15911 - squid:4/squid: NULL pointer dereference in the gopher
protocol code (CVE-2023-46728)
- Resolves: RHEL-18251 - squid crashes in assertion when a parent peer exists
- Resolves: RHEL-14794 - squid: squid multiple issues in HTTP response caching
(CVE-2023-5824)
- Resolves: RHEL-14803 - squid: squid: Denial of Service in HTTP Digest
Authentication (CVE-2023-46847)
- Resolves: RHEL-14777 - squid: squid: Request/Response smuggling in HTTP/1.1
and ICAP (CVE-2023-46846)




Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) libecap-1.0.1-2.module+el8.9.0+90083+f7556140.src.rpmbec878a867b1f4f4f809e660ec3852c4e9dc9ed281d3bb8f19c0846a53763de6-ol8_aarch64_appstream
squid-4.15-10.module+el8.10.0+90323+4f2b2edd.src.rpmbd6eeb0e8576da540905413753ced839f314b538927eecab5cc376f17b4c5b32-ol8_aarch64_appstream
libecap-1.0.1-2.module+el8.9.0+90083+f7556140.aarch64.rpm44b7d303b0706f02bf8f6c764ccdbfdb723bda7fe9458c8b4f45e8cc5f9e53a9-ol8_aarch64_appstream
libecap-devel-1.0.1-2.module+el8.9.0+90083+f7556140.aarch64.rpm9c28b594b51fa9966956f5def632f33067dafb86207c324f2c7dfc8b0dcf466e-ol8_aarch64_appstream
squid-4.15-10.module+el8.10.0+90323+4f2b2edd.aarch64.rpmfd07e124cad929af09a1532efba4e1137343302948a9f1967a130e75b73d2380-ol8_aarch64_appstream
Oracle Linux 8 (x86_64) libecap-1.0.1-2.module+el8.9.0+90083+f7556140.src.rpmbec878a867b1f4f4f809e660ec3852c4e9dc9ed281d3bb8f19c0846a53763de6-ol8_x86_64_appstream
squid-4.15-10.module+el8.10.0+90323+4f2b2edd.src.rpmbd6eeb0e8576da540905413753ced839f314b538927eecab5cc376f17b4c5b32-ol8_x86_64_appstream
libecap-1.0.1-2.module+el8.9.0+90083+f7556140.x86_64.rpma19a8fe60034442365ebe4867be57efaf3dd84f45d1c064789c6a86b792bc997-ol8_x86_64_appstream
libecap-devel-1.0.1-2.module+el8.9.0+90083+f7556140.x86_64.rpmd826fa957ede16c5b3db470182a176678ec52971afdaf4fdd4c0e47eb78951c9-ol8_x86_64_appstream
squid-4.15-10.module+el8.10.0+90323+4f2b2edd.x86_64.rpme5788c7b48d12ee08d26140e11c1de24ab234bd3229c1dc0d872aebd248d40cf-ol8_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete