Описание
ELSA-2023-6884: squid security update (CRITICAL)
[7:3.1.23-24.0.1]
- Fix stack buffer overflow when parsing Digest Authorization [CVE-2023-46847][Orabug: 36053765]
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
squid
3.1.23-24.0.1.el6
Oracle Linux i686
squid
3.1.23-24.0.1.el6
Связанные CVE
Связанные уязвимости
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.
Squid is vulnerable to a Denial of Service, where a remote attacker c ...