Download
| Alert*
oval:org.secpod.oval:def:89002592
This update for squid3 fixes the following issues: Security issue fixed: - CVE-2018-19131: Fixed Cross-Site-Scripting vulnerability in the TLS error handling . oval:org.secpod.oval:def:89002389 This update for squid3 fixes the following issues: Security issues fixed: - CVE-2018-1000024: DoS fix caused by incorrect pointer handling when processing ESI responses. This affects the default custom esi_parser . - CVE-2018-1000027: DoS fix caused by incorrect pointer handing whien processing ESI ... oval:org.secpod.oval:def:89002435 This update for squid3 fixes the following issues: - CVE-2018-1172: Fixed a DoS caused by incorrect handling of ESI responses oval:org.secpod.oval:def:89044757 This update for squid3 fixes the following issues: - CVE-2016-10002: Fixed incorrect processing of responses to If-None-Modified HTTP conditional requests. This allowed responses containing private data to clients it should not have reached - CVE-2014-9749: Prevent nonce replay in Digest authentica ... oval:org.secpod.oval:def:89000156 squid3 is installed oval:org.secpod.oval:def:89045186 This update for squid3 fixes the following issues: - Multiple issues in pinger ICMP processing. - CVE-2016-3947: Buffer overrun issue in pinger ICMPv6 processing. - CVE-2016-4554: fix header smuggling issue in HTTP Request processing - Fix multiple Denial of Service issues in HTTP Response proces ... oval:org.secpod.oval:def:89045381 This update for squid3 fixes the following issues: - Multiple issues in pinger ICMP processing. - CVE-2016-3947: Buffer overrun issue in pinger ICMPv6 processing. - CVE-2016-4554: fix header smuggling issue in HTTP Request processing - fix multiple Denial of Service issues in HTTP Response proces ... |