ELSA-2024-1376

ULN >
Oracle Linux Errata repository >
ELSA-2024-1376

ELSA-2024-1376 - squid security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-03-20

Description

[7:5.5-6.0.1.8]
- Rebuild with release bump

[7:5.5-6.8]
- Resolves: RHEL-19555 - squid: denial of service in HTTP request
parsing (CVE-2023-50269)

[7:5.5-6.7]
- Resolves: RHEL-28614 - squid: Denial of Service in HTTP Chunked
Decoding (CVE-2024-25111)

[7:5.5-6.6]
- Resolves: RHEL-26091 - squid: denial of service in HTTP header
parser (CVE-2024-25617)

Related CVEs

CVE-2023-50269

CVE-2024-25111

CVE-2024-25617

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	squid-5.5-6.0.1.el9_3.8.src.rpm	1a0175afafbdc4d01e1b2eb600bb74da76a25e62d480c0b2aa1f87952a8b6ec4	-	ol9_aarch64_appstream
	squid-5.5-6.0.1.el9_3.8.aarch64.rpm	0c14ffec3edef4ea93a6dfab7df082cd701ad6b895665982c4fbfb2db1563fcb	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	squid-5.5-6.0.1.el9_3.8.src.rpm	1a0175afafbdc4d01e1b2eb600bb74da76a25e62d480c0b2aa1f87952a8b6ec4	-	ol9_x86_64_appstream
	squid-5.5-6.0.1.el9_3.8.x86_64.rpm	2a2126e52f409dac092706c5c21e283bac2c9fff10afa1161c26d9af4f6fe572	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691