Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2013-0505

Опубликовано: 22 фев. 2013
Источник: oracle-oval
Платформа: Oracle Linux 6

Описание

ELSA-2013-0505: squid security and bug fix update (MODERATE)

[7:3.1.10-16]

  • Resolves: #888198 - CVE-2012-5643: improved upstream patch

[7:3.1.10-15]

  • Reverts: #861062 - Squid delays on FQDNs that don't contains AAAA record

[7:3.1.10-14]

  • Resolves: #888198 - CVE-2012-5643: patch

[7:3.1.10-13]

  • Resolves: #888198 - CVE-2012-5643: DoS (excessive resource consumption)

[7:3.1.10-12]

  • Resolves #861062 - add configure directive --enable-internal-dns

[7:3.1.10-11 ]

  • Resolves #861062 - Squid delays on FQDNs that don't contains AAAA record

[7:3.1.10-10]

  • Resolves #798090 - Client timeout uses server-side 'read_timeout'
  • Resolves #833086 - Private md5 hash function does not comply FIPS
  • Resolves #782732 - Squid crashes by segfault when it reboots
  • Resolves #797571 - Squid userid is not added to wbpriv group
  • Disable strict-error-checking on account of squid-fips.patch

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

squid

3.1.10-16.el6

Oracle Linux i686

squid

3.1.10-16.el6

Связанные CVE

CVE-2012-5643

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2012-5643

ubuntu
больше 12 лет назад

Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST requests, or (3) crafted authentication credentials.

redhat логотип

CVE-2012-5643

redhat
больше 12 лет назад

Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST requests, or (3) crafted authentication credentials.

nvd логотип

CVE-2012-5643

nvd
больше 12 лет назад

Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST requests, or (3) crafted authentication credentials.

debian логотип

CVE-2012-5643

debian
больше 12 лет назад

Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2. ...

github логотип

GHSA-pq8w-rcmc-8xgj

github
больше 3 лет назад

Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST requests, or (3) crafted authentication credentials.