Download
| Alert*
oval:org.secpod.oval:def:89051164
This update for squid fixes the following issues: * CVE-2023-46728: Remove gopher support . * Fixed overread in HTTP request header parsing . oval:org.secpod.oval:def:2600474 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:509062 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: squid: Denial of Service in SSL Certificate validation squid: NULL pointer dereference in the gopher protocol code squid: Buffer over-read in the HTTP Message processing f ... oval:org.secpod.oval:def:97777 [CLSA-2023:1702496473] squid34: Fix of CVE-2023-46728 oval:org.secpod.oval:def:1601856 Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid prior to Squid 6.0.1. Responses triggering ... oval:org.secpod.oval:def:97776 [CLSA-2023:1702496332] squid: Fix of CVE-2023-46728 oval:org.secpod.oval:def:4501518 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * squid: Denial of Service in SSL Certificate validation * squid: NULL pointer dereference in the gopher protocol code * squid: Buffer over-read in the HTTP Message proces ... oval:org.secpod.oval:def:1701988 Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using `--with-openssl` are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a remote server to ... oval:org.secpod.oval:def:1507239 [7:5.5-6.0.1.el9_3.5] - squid: Denial of Service in SSL Certificate validation - squid: NULL pointer dereference in the gopher protocol code - squid: Buffer over-read in the HTTP Message processing feature - squid: Incorrect Check of Function Return Value In Helper Process management oval:org.secpod.oval:def:3301425 Security update for squid oval:org.secpod.oval:def:89051178 This update for squid fixes the following issues: * CVE-2023-46728: Remove gopher support . * Fixed overread in HTTP request header parsing . oval:org.secpod.oval:def:89051171 This update for squid fixes the following issues: * CVE-2023-46728: Remove gopher support . * Fixed overread in HTTP request header parsing . oval:org.secpod.oval:def:508208 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: squid: Denial of Service in SSL Certificate validation squid: NULL pointer dereference in the gopher protocol code squid: Buffer over-read in the HTTP Message processing f ... oval:org.secpod.oval:def:2501296 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:509182 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: squid: denial of service in HTTP header parser squid: denial of service in HTTP request parsing squid: Buffer over-read in the HTTP Message processing feature squid: Inco ... oval:org.secpod.oval:def:1507237 libecap squid [7:4.15-7.5] - Fix squid: Denial of Service in SSL Certificate validation - Fix squid: NULL pointer dereference in the gopher protocol code - Fix squid: Buffer over-read in the HTTP Message processing feature - Fix squid: Incorrect Check of Function Return Value In Helper Process ma ... oval:org.secpod.oval:def:126951 Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS l ... oval:org.secpod.oval:def:1507459 [7:3.5.20-17.0.1] - Mutiple CVE fixes for squid [Orabug: 33146289] - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range reque ... oval:org.secpod.oval:def:126949 Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS l ... oval:org.secpod.oval:def:94745 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:94746 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:96488 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:96487 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:2108455 Oracle Solaris 11 - ( CVE-2024-25617 ) oval:org.secpod.oval:def:19500504 Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using '--with-openssl' are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a remote server to ... oval:org.secpod.oval:def:613004 Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid"s HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow wh ... oval:org.secpod.oval:def:99970 Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid"s HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow wh ... |