ELSA-2022-6815

ULN >
Oracle Linux Errata repository >
ELSA-2022-6815

ELSA-2022-6815 - squid security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2022-10-07

Description

[7:3.5.20-17.0.1]
- Mutiple CVE fixes for squid [Orabug: 33146289]
- Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing (#778)
- Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing (#788)
- Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range requests (#790)
- Resolves: CVE-2021-33620 squid: Handle more partial responses (#791)

[7:3.5.20-17.8]
- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
authentication

Related CVEs

CVE-2022-41318

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	squid-3.5.20-17.0.1.el7_9.8.src.rpm	095f3cc1de87faeb46140b5fc210b19512ed12c91667f11e9a4f4045739ab5ee	ELSA-2022-22254	ol7_aarch64_latest
	squid-3.5.20-17.0.1.el7_9.8.src.rpm	095f3cc1de87faeb46140b5fc210b19512ed12c91667f11e9a4f4045739ab5ee	ELSA-2022-22254	ol7_aarch64_optional_latest
	squid-3.5.20-17.0.1.el7_9.8.src.rpm	095f3cc1de87faeb46140b5fc210b19512ed12c91667f11e9a4f4045739ab5ee	ELSA-2022-22254	ol7_aarch64_u9_patch
	squid-3.5.20-17.0.1.el7_9.8.aarch64.rpm	9dea37381e51a29e4080e83caca71fe1312205ef36abbadff733fc55cc39a1a4	ELSA-2022-22254	ol7_aarch64_latest
	squid-3.5.20-17.0.1.el7_9.8.aarch64.rpm	9dea37381e51a29e4080e83caca71fe1312205ef36abbadff733fc55cc39a1a4	ELSA-2022-22254	ol7_aarch64_u9_patch
	squid-migration-script-3.5.20-17.0.1.el7_9.8.aarch64.rpm	5fac605fa78ef572d64fbaf2bac6ce6eaba125774eaa6c95cd9409718965bf88	ELSA-2024-11049	ol7_aarch64_latest
	squid-migration-script-3.5.20-17.0.1.el7_9.8.aarch64.rpm	5fac605fa78ef572d64fbaf2bac6ce6eaba125774eaa6c95cd9409718965bf88	ELSA-2024-11049	ol7_aarch64_u9_patch
	squid-sysvinit-3.5.20-17.0.1.el7_9.8.aarch64.rpm	dbcaa03abe68ce7fde2bfce940af0340a06492e54fdba35d1b1aac61217dd572	ELSA-2024-11049	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	squid-3.5.20-17.0.1.el7_9.8.src.rpm	095f3cc1de87faeb46140b5fc210b19512ed12c91667f11e9a4f4045739ab5ee	ELSA-2022-22254	ol7_x86_64_latest
	squid-3.5.20-17.0.1.el7_9.8.src.rpm	095f3cc1de87faeb46140b5fc210b19512ed12c91667f11e9a4f4045739ab5ee	ELSA-2022-22254	ol7_x86_64_optional_latest
	squid-3.5.20-17.0.1.el7_9.8.src.rpm	095f3cc1de87faeb46140b5fc210b19512ed12c91667f11e9a4f4045739ab5ee	ELSA-2022-22254	ol7_x86_64_u9_patch
	squid-3.5.20-17.0.1.el7_9.8.x86_64.rpm	bad8d2dda85ab2ba74e5b6f7d3b497943cafe405b7dc006073dcc0ec29a03d21	ELSA-2022-22254	ol7_x86_64_latest
	squid-3.5.20-17.0.1.el7_9.8.x86_64.rpm	bad8d2dda85ab2ba74e5b6f7d3b497943cafe405b7dc006073dcc0ec29a03d21	ELSA-2022-22254	ol7_x86_64_u9_patch
	squid-migration-script-3.5.20-17.0.1.el7_9.8.x86_64.rpm	b0d368cc5bb4c26aadba784ee148b91d8ac9da301b7eccefeac8b2db43b8ca16	ELSA-2024-11049	ol7_x86_64_latest
	squid-migration-script-3.5.20-17.0.1.el7_9.8.x86_64.rpm	b0d368cc5bb4c26aadba784ee148b91d8ac9da301b7eccefeac8b2db43b8ca16	ELSA-2024-11049	ol7_x86_64_u9_patch
	squid-sysvinit-3.5.20-17.0.1.el7_9.8.x86_64.rpm	87feb3be76e0d6d71551fba150c402902d8ba268c0a9efc1467909aed7c01f79	ELSA-2024-11049	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691