Download
| Alert*
|
oval:org.secpod.oval:def:71237
squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:70638 Jianjun Chen discovered that the Squid proxy caching server was susceptible to HTTP request smuggling. oval:org.secpod.oval:def:506052 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * squid: improper input validation may allow a trusted client to perform HTTP request smuggling For more details about the security issue, including the impact, a CVSS scor ... oval:org.secpod.oval:def:506017 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * squid: improper input validation may allow a trusted client to perform HTTP request smuggling For more details about the security issue, including the impact, a CVSS scor ... oval:org.secpod.oval:def:71236 squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:1801934 An issue was discovered in Squid through 4.13 and 5.x through 5.0.4. Due to improper input validation, it allows a trusted client to perform HTTP Request Smuggling and access services otherwise forbidden by the security controls. This occurs for certain uri_whitespace configuration settings. oval:org.secpod.oval:def:119686 Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS l ... oval:org.secpod.oval:def:119681 Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS l ... oval:org.secpod.oval:def:73626 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * squid: improper input validation may allow a trusted client to perform HTTP request smuggling For more details about the security issue, including the impact, a CVSS scor ... oval:org.secpod.oval:def:1700605 A flaw was found in squid. Due to improper validation while parsing the request URI, squid is vulnerable to HTTP request smuggling. This issue could allow a trusted client to perform an HTTP request smuggling attack and access services otherwise forbidden by squid. The highest threat from this vulne ... oval:org.secpod.oval:def:605467 Jianjun Chen discovered that the Squid proxy caching server was susceptible to HTTP request smuggling. oval:org.secpod.oval:def:1504826 [7:3.5.20-17.6] - Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow a trusted client to perform HTTP Request Smuggling oval:org.secpod.oval:def:70504 squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:4500045 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. oval:org.secpod.oval:def:205853 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * squid: improper input validation may allow a trusted client to perform HTTP request smuggling For more details about the security issue, including the impact, a CVSS scor ... oval:org.secpod.oval:def:2500468 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:1504875 squid [7:4.11-4.2] - Resolves: #1944260 - CVE-2020-25097 squid:4/squid: improper input validation may allow a trusted client to perform HTTP Request Smuggling oval:org.secpod.oval:def:1701696 A flaw was found in squid. Due to improper validation while parsing the request URI, squid is vulnerable to HTTP request smuggling. This issue could allow a trusted client to perform an HTTP request smuggling attack and access services otherwise forbidden by squid. The highest threat from this vulne ... oval:org.secpod.oval:def:705948 squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:97559 [CLSA-2021:1632262221] Fixed 9 CVEs in squid34 oval:org.secpod.oval:def:89047126 This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing - CVE-2021-28651: Memory leak in RFC 2169 response parsing - CVE-2021-28662: Limit HeaderLookupTable_t::lookup to BadHdr and specific IDs - CVE-2021-31806: Handle more Range requ ... oval:org.secpod.oval:def:89046113 This update for squid3 fixes the following issues: - CVE-2021-28651: Fixed a denial of service issue when processing URN resource identifiers . - CVE-2020-25097: Fixed an HTTP request smuggling issue . oval:org.secpod.oval:def:2106973 Oracle Solaris 11 - ( CVE-2020-25097 ) oval:org.secpod.oval:def:89044439 This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing - CVE-2021-28651: Memory leak in RFC 2169 response parsing - CVE-2021-28662: Limit HeaderLookupTable_t::lookup to BadHdr and specific IDs - CVE-2021-31806: Handle more Range requ ... oval:org.secpod.oval:def:89044383 This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing - CVE-2021-28651: Memory leak in RFC 2169 response parsing - CVE-2021-28662: Limit HeaderLookupTable_t::lookup to BadHdr and specific IDs - CVE-2021-31806: Handle more Range requ ... oval:org.secpod.oval:def:89046781 This update for squid fixes the following issues: - CVE-2020-25097: Fixed HTTP Request Smuggling - CVE-2021-28651: Fixed DoS in URN processing - CVE-2021-46784: Fixed DoS when processing gopher server responses |
