SUSE-SU-2021:1961-1 -- SLES squidID: oval:org.secpod.oval:def:89047126 | Date: (C)2022-10-21 (M)2024-04-25 |
Class: PATCH | Family: unix |
This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing - CVE-2021-28651: Memory leak in RFC 2169 response parsing - CVE-2021-28662: Limit HeaderLookupTable_t::lookup to BadHdr and specific IDs - CVE-2021-31806: Handle more Range requests - CVE-2020-25097: HTTP Request Smuggling vulnerability - Handle more partial responses - fix previous change to reinstante permissions macros, because the wrong path has been used . - use libexecdir instead of libdir to conform to recent changes in Factory . - Reinstate permissions macros for pinger binary, because the permissions package is also responsible for setting up the cap_net_raw capability, currently a fresh squid install doesn"t get a capability bit at all . - Change pinger and basic_pam_auth helper to use standard permissions. pinger uses cap_net_raw=ep instead
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |