Описание
ELSA-2024-9625: squid security update (IMPORTANT)
[7:5.5-14.3]
- Disable ESI support
- Resolves: RHEL-65076 - CVE-2024-45802 squid: Denial of Service processing ESI response content
[7:5.5-14.2]
- Resolves: RHEL-64425 TCP_MISS_ABORTED/100 erros when uploading
[7:5.5-14.1]
- Resolves: RHEL-62332 - (Regression) Transfer-encoding:chunked data is not sent to the client in its complementary
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
squid
5.5-14.el9_5.3
Oracle Linux x86_64
squid
5.5-14.el9_5.3
Связанные CVE
Связанные уязвимости
Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This bug is fixed in the default build configuration of Squid version 6.10.
Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This bug is fixed in the default build configuration of Squid version 6.10.
Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This bug is fixed in the default build configuration of Squid version 6.10.
Squid is an open source caching proxy for the Web supporting HTTP, HTT ...