Описание
Security update for squid
This update for squid fixes the following issues:
Security issue fixed:
- CVE-2019-13345: Fixed a cross site scripting vulnerability via user_name or auth parameter in cachemgr.cgi (bsc#1140738).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
squid-4.8-lp151.2.3.1
openSUSE Leap 15.1
squid-4.8-lp151.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2019:1963-1
- SUSE Security Ratings
- SUSE Bug 1140738
- SUSE CVE CVE-2019-13345 page
Описание
The cachemgr.cgi web module of Squid through 4.7 has XSS via the user_name or auth parameter.
Затронутые продукты
openSUSE Leap 15.0:squid-4.8-lp151.2.3.1
openSUSE Leap 15.1:squid-4.8-lp151.2.3.1
Ссылки
- CVE-2019-13345
- SUSE Bug 1140738