Описание
ELSA-2014-0597: squid security update (MODERATE)
[7:3.1.10-20.3]
- Resolves: #1098134 - CVE-2014-0128 squid: denial of service when using SSL-Bump
[7:3.1.10-20.2]
- revert: Resolves: #1039088 - issues with timeout on HTTPS connections
[7:3.1.10-20.1]
- Resolves: #1093072 - issues with timeout on HTTPS connections
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
squid
3.1.10-20.el6_5.3
Oracle Linux i686
squid
3.1.10-20.el6_5.3
Связанные CVE
Связанные уязвимости
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state management.
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state management.
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state management.
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled ...
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state management.