Описание
ELSA-2022-1939: squid:4 security and bug fix update (MODERATE)
libecap squid [7:4.15-3]
- Resolves: #1941506 - CVE-2021-28116 squid:4/squid: out-of-bounds read in WCCP protocol data may lead to information disclosure
[7:4.15-2]
- Resolves: #2006121 - SQUID shortens FTP Link wrong that contains a semi-colon and as a result is not able to download zip file.CODE 404 TO CLIENT)
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module squid:4 is enabled
libecap
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
libecap-devel
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
squid
4.15-3.module+el8.6.0+20529+9782b8ab
Oracle Linux x86_64
Module squid:4 is enabled
libecap
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
libecap-devel
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
squid
4.15-3.module+el8.6.0+20529+9782b8ab
Связанные CVE
Связанные уязвимости
Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for remote code execution as nobody.
Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for remote code execution as nobody.
Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for remote code execution as nobody.
Squid through 4.14 and 5.x through 5.0.5, in some configurations, allo ...
