ELSA-2024-1376

ELSA-2024-1376 - squid security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2024-03-20

Description


[7:5.5-6.0.1.8]
- Rebuild with release bump

[7:5.5-6.8]
- Resolves: RHEL-19555 - squid: denial of service in HTTP request
parsing (CVE-2023-50269)

[7:5.5-6.7]
- Resolves: RHEL-28614 - squid: Denial of Service in HTTP Chunked
Decoding (CVE-2024-25111)

[7:5.5-6.6]
- Resolves: RHEL-26091 - squid: denial of service in HTTP header
parser (CVE-2024-25617)


Related CVEs


CVE-2023-50269
CVE-2024-25111
CVE-2024-25617

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) squid-5.5-6.0.1.el9_3.8.src.rpm4afc44999054d12f86c237ec03e4d3fd-ol9_aarch64_appstream
squid-5.5-6.0.1.el9_3.8.aarch64.rpm2c01df6f5cd8df26bbad56ed88678c2c-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) squid-5.5-6.0.1.el9_3.8.src.rpm4afc44999054d12f86c237ec03e4d3fd-ol9_x86_64_appstream
squid-5.5-6.0.1.el9_3.8.x86_64.rpm778cc42dff6cc34f6243025e6201eb5c-ol9_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete