squid-5.2-1.el9.1
エラータID: AXSA:2022-4015:03
Release date:
Wednesday, November 9, 2022 - 08:25
Subject:
squid-5.2-1.el9.1
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects.
Security Fix(es):
* squid: DoS when processing gopher server responses (CVE-2021-46784)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2021-46784
In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.
Solution:
Update packages.
CVEs:
CVE-2021-46784
In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.
In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.
Additional Info:
N/A
Download:
SRPMS
- squid-5.2-1.el9.1.src.rpm
MD5: 23ccdf1c28821af413f56599ebdf39fb
SHA-256: 490e88bbed03fec83daa962128ecd44299e3cbfc48e67243a1296ed8d0e2dfd3
Size: 2.55 MB
Asianux Server 9 for x86_64
- squid-5.2-1.el9.1.x86_64.rpm
MD5: 333ca03d94cd479109ac39bd2f090749
SHA-256: b9a7c95deaa60a6e1c628344cd13e888143e3004b2ec677a9f96327e275878fc
Size: 3.56 MB
日本語