What Are You Looking For?

Sign Up
Fixes language file issue, but more importantly. . . --------------- squidGuard upstream has released patches fixing (quoting from upstream advisories): a, This patch fixes one buffer overflow problem in sgLog.c when overlong URLs are requested. SquidGuard will then go into emergency mode were no blocking occurs. This is not required in this situation. URL: Downloads/Patches/1.4/Readme.Patch-20091015 ---- b, This patch fixes two bypass problems with URLs which length is close to the limit defined by MAX_BUF (default: 4096) in squidGuard and MAX_URL (default: 4096 in squid 2.x and 8192 in squid 3.x) in squid. For this kind of URLs the proxy request exceeds MAX_BUF causing squidGuard to complain about not being able to parse the squid request. URL: ---- References: ----------- http://secunia.com/advisories/37107/ http://www.nntpnews.net/f3468/ports-139844-maintainer-update-www-squidguard-fix-security-vulnerabilities-11997445/ Upstream patches - squidGuard 1.4: ---------------------------------- Upstream advisories: --------------------

Fedora 10 Update: squidGuard-1.4-8.fc10

November 4, 2009
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-10743
2009-10-27 05:00:11
--------...

Summary

Fixes language file issue, but more importantly. . . --------------- squidGuard upstream has released patches fixing (quoting from upstream advisories): a, This patch fixes one buffer overflow problem in sgLog.c when overlong URLs are requested. SquidGuard will then go into emergency mode were no blocking occurs. This is not required in this situation. URL: Downloads/Patches/1.4/Readme.Patch-20091015 ---- b, This patch fixes two bypass problems with URLs which length is close to the limit defined by MAX_BUF (default: 4096) in squidGuard and MAX_URL (default: 4096 in squid 2.x and 8192 in squid 3.x) in squid. For this kind of URLs the proxy request exceeds MAX_BUF causing squidGuard to complain about not being able to parse the squid request. URL: ----

Change Log

References

http://www.nntpnews.net/f3468/ports-139844-maintainer-update-www-squidguard-fix-security-vulnerabilities-11997445/ Upstream patches - squidGuard 1.4: ---------------------------------- Upstream advisories: --------------------

Update Instructions

Severity

Related News

OpenSSL 3.2 Adds Support for TCP Fast Open on Linux, Argon2 KDF, and More

Nov 27, 2023

Python’s New Security Developer Has Plans to Secure the Language

Nov 26, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

OpenBSD 7.4 Released With New Hardware Support, Security Improvements

Oct 17, 2023

News

Advisories

HOWTOs

Features

Password Guessing as an Attack Vector
Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management

About Us

Powered By

Footer Logo

278
© 2023 Guardian Digital, Inc All Rights Reserved