Download
| Alert*
oval:org.secpod.oval:def:97773
[CLSA-2023:1701286463] squid34: Fix of CVE-2023-46847 oval:org.secpod.oval:def:1601850 Due to a buffer overflow bug Squid is vulnerable to a Denial of Service attack against HTTP Digest Authentication oval:org.secpod.oval:def:1701886 Due to a buffer overflow bug Squid is vulnerable to a Denial of Service attack against HTTP Digest AuthenticationAn issue was discovered in Squid through 4.7. When handling requests from users, Squid checks its rules to see if the request should be denied. Squid by default comes with rules to block ... oval:org.secpod.oval:def:97766 [CLSA-2023:1700164396] squid: Fix of CVE-2023-46847 oval:org.secpod.oval:def:19500473 Due to a buffer overflow bug Squid is vulnerable to a Denial of Service attack against HTTP Digest Authentication oval:org.secpod.oval:def:206042 Security Fix: squid: Denial of Service in HTTP Digest Authentication For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. oval:org.secpod.oval:def:1507418 [7:3.4.14-15.0.1] - Fix stack buffer overflow when parsing Digest Authorization [CVE-2023-46847][Orabug: 36053795] oval:org.secpod.oval:def:1507423 [7:3.1.23-24.0.1] - Fix stack buffer overflow when parsing Digest Authorization [CVE-2023-46847][Orabug: 36053765] oval:org.secpod.oval:def:95139 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) oval:org.secpod.oval:def:1507138 [7:3.5.20-17.0.1] - Mutiple CVE fixes for squid [Orabug: 33146289] - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range reque ... oval:org.secpod.oval:def:708603 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:94745 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:94746 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:95136 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46 ... oval:org.secpod.oval:def:2600394 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:96488 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:1507152 [7:5.5-6.1] - Resolves: RHEL-14819 - squid: squid: denial of Servicein FTP - Resolves: RHEL-14807 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14780 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP [7:5.5-6] - Resolves: #2231827 - Crash with half_cl ... oval:org.secpod.oval:def:96487 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:89051060 This update for squid fixes the following issues: * CVE-2023-46846: Request/Response smuggling in HTTP/1.1 and ICAP . * CVE-2023-46847: Denial of Service in HTTP Digest Authentication . * CVE-2023-46724: Fix validation of certificates with CN=* . * CVE-2023-46848: Denial of Service in FTP . oval:org.secpod.oval:def:89051083 This update for squid fixes the following issues: * CVE-2023-46846: Request/Response smuggling in HTTP/1.1 and ICAP . * CVE-2023-46847: Denial of Service in HTTP Digest Authentication . * CVE-2023-46724: Fix validation of certificates with CN=* . * CVE-2023-46848: Denial of Service in FTP . oval:org.secpod.oval:def:95284 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46846) oval:org.secpod.oval:def:1507134 [7:5.5-5.el9_2.1] - Improve HTTP chunked encoding compliance - Fix stack buffer overflow when parsing Digest Authorization - Fix userinfo percent-encoding oval:org.secpod.oval:def:95141 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46 ... oval:org.secpod.oval:def:2108455 Oracle Solaris 11 - ( CVE-2024-25617 ) oval:org.secpod.oval:def:5800215 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP * SQUID-2023:5 squid: denial of ... oval:org.secpod.oval:def:89051070 This update for squid fixes the following issues: * CVE-2023-46846: Request/Response smuggling in HTTP/1.1 and ICAP . * CVE-2023-46847: Denial of Service in HTTP Digest Authentication . * CVE-2023-46724: Fix validation of certificates with CN=* . * CVE-2023-46848: Denial of Service in FTP . oval:org.secpod.oval:def:1507162 libecap squid [7:4.15-7.1] - Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP [7:4.15-7] - Resolves: #2076717 - Crash with half_closed_client on oval:org.secpod.oval:def:1507140 libecap squid [4.15-6.0.1] - Improve HTTP chunked encoding compliance - Fix stack buffer overflow when parsing Digest Authorization oval:org.secpod.oval:def:2600363 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:95148 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46846) * squid: denial of Se ... oval:org.secpod.oval:def:4501509 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * squid: Denial of Service in HTTP Digest Authentication * squid: Request/Response smuggling in HTTP/1.1 and ICAP For more details about the security issue, including the ... oval:org.secpod.oval:def:4501502 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP For more details about the secu ... oval:org.secpod.oval:def:613004 Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid"s HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow wh ... oval:org.secpod.oval:def:2501216 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:2501270 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:99970 Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid"s HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow wh ... |