Описание
ELSA-2022-6775: squid:4 security update (IMPORTANT)
libecap squid [7:4.15-3.1]
- Resolves: #2100782 - CVE-2021-46784 squid:4/squid: DoS when processing gopher server responses
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module squid:4 is enabled
libecap
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
libecap-devel
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
squid
4.15-3.module+el8.6.0+20822+0be15e43.1
Oracle Linux x86_64
Module squid:4 is enabled
libecap
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
libecap-devel
1.0.1-2.module+el8.3.0+7819+eb7d4ef6
squid
4.15-3.module+el8.6.0+20822+0be15e43.1
Связанные CVE
Связанные уязвимости
A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a client. This is fixed in 5.7.
A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a client. This is fixed in 5.7.
A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a client. This is fixed in 5.7.
A buffer over-read was discovered in libntlmauth in Squid 2.5 through ...
