Stay Connected:

ELSA-2023-7668

ELSA-2023-7668 - squid:4 security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2023-12-11

Description


libecap
squid
[7:4.15-7.3]
- Fix squid: DoS against HTTP and HTTPS (CVE-2023-5824)

[7:4.15-7.1]
- Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest
Authentication
- Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1
and ICAP


Related CVEs


CVE-2023-5824

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) libecap-1.0.1-2.module+el8.9.0+90083+f7556140.src.rpmbec878a867b1f4f4f809e660ec3852c4e9dc9ed281d3bb8f19c0846a53763de6-ol8_aarch64_appstream
squid-4.15-7.module+el8.9.0+90100+fede0fa7.3.src.rpm82a6016da52fdd5502b81b145595733fef7fc3eacdfc529e10713a1b82ec60a6-ol8_aarch64_appstream
libecap-1.0.1-2.module+el8.9.0+90083+f7556140.aarch64.rpm44b7d303b0706f02bf8f6c764ccdbfdb723bda7fe9458c8b4f45e8cc5f9e53a9-ol8_aarch64_appstream
libecap-devel-1.0.1-2.module+el8.9.0+90083+f7556140.aarch64.rpm9c28b594b51fa9966956f5def632f33067dafb86207c324f2c7dfc8b0dcf466e-ol8_aarch64_appstream
squid-4.15-7.module+el8.9.0+90100+fede0fa7.3.aarch64.rpmbbf37b62f034ed1ab06856e9babcf56efa5d3a7e5819f9b5f57318c5d0963ed8-ol8_aarch64_appstream
Oracle Linux 8 (x86_64) libecap-1.0.1-2.module+el8.9.0+90083+f7556140.src.rpmbec878a867b1f4f4f809e660ec3852c4e9dc9ed281d3bb8f19c0846a53763de6-ol8_x86_64_appstream
squid-4.15-7.module+el8.9.0+90100+fede0fa7.3.src.rpm82a6016da52fdd5502b81b145595733fef7fc3eacdfc529e10713a1b82ec60a6-ol8_x86_64_appstream
libecap-1.0.1-2.module+el8.9.0+90083+f7556140.x86_64.rpma19a8fe60034442365ebe4867be57efaf3dd84f45d1c064789c6a86b792bc997-ol8_x86_64_appstream
libecap-devel-1.0.1-2.module+el8.9.0+90083+f7556140.x86_64.rpmd826fa957ede16c5b3db470182a176678ec52971afdaf4fdd4c0e47eb78951c9-ol8_x86_64_appstream
squid-4.15-7.module+el8.9.0+90100+fede0fa7.3.x86_64.rpm89ee3bf59d6d428f83b9531924fd787dcc6491bfdf707c5b38544526d4bb0429-ol8_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights