Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora: Moderate Update 2009-8324 Addresses Squid DoS Vulnerabilities

fedora
Calendar Grey August 17, 2009
Dist Fedora Esm H88
Addresses various denial of service vulnerabilities in Squid for Fedora 11, improving both security measures and overall service reliability.
Fixes several denial of service issues which could allow an attacker to stop the Squid service

Summary

Squid is a high-performance proxy caching server for Web clients,

supporting FTP, gopher, and HTTP data objects. Unlike traditional

caching software, Squid handles all requests in a single,

non-blocking, I/O-driven process. Squid keeps meta data and especially

hot objects cached in RAM, caches DNS lookups, supports non-blocking

DNS lookups, and implements negative caching of failed requests.

Squid consists of a main server program squid, a Domain Name System

lookup program (dnsserver), a program for retrieving FTP data

(ftpget), and some management and client tools.

Update Information:

Fixes several denial of service issues which could allow an attacker to stop the Squid service. CVE-2009-2621, CVE-2009-2622

Topics%20covered

Topics Covered

security advisory denial of service Fedora security fix squid service stability

Change Log

* Tue Aug 4 2009 Henrik Nordstrom - 7:3.0.STABLE18-1 - Update to 3.0.STABLE18 * Sat Aug 1 2009 Henrik Nordstrom - 7:3.0.STABLE17-3 - Squid Bug #2728: regression: assertion failed: http.cc:705: "!eof" * Mon Jul 27 2009 Henrik Nordstrom - 7:3.0.STABLE17-1 - Bug #514014, update to 3.0.STABLE17 fixing the denial of service issues mentioned in Squid security advisory SQUID-2009_2. * Wed Jul 1 2009 Jiri Skala 7:3.0.STABLE16-2 - fixed patch parameter of bXXX patches * Mon Jun 29 2009 Henrik Nordstrom - 7:3.0.STABLE16-1 - Upgrade to 3.0.STABLE16 * Sat May 23 2009 Henrik Nordstrom - 7:3.0.STABLE15-2 - Bug #453304 - Squid requires restart after Network Manager connection setup * Sat May 9 2009 Henrik Nordstrom - 7:3.0.STABLE15-1 - Upgrade to 3.0.STABLE15 * Tue Apr 28 2009 Jiri Skala - 7:3.0.STABLE14-3 - fixed ambiguous condition in the init script (exit 4) * Mon Apr 20 2009 Henrik Nordstrom - 7:3.0.STABLE14-2 - Squid bug #2635: assertion failed: HttpHeader.cc:1196: "Headers[id].type == ftInt64" * Sun Apr 19 2009 Henrik Nordstrom - 7:3.0.STABLE14-1 - Upgrade to 3.0.STABLE14 * Fri Mar 6 2009 Henrik Nordstrom - 7:3.0.STABLE13-2 - backported logfile.cc syslog parameters patch from 3.1 (b9443.patch) - GCC-4.4 workaround in src/wccp2.cc * Wed Feb 25 2009 Fedora Release Engineering - 7:3.0.STABLE13-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild

References


[ 1 ] Bug #514013 - CVE-2009-2621, CVE-2009-2622 squid: multiple vulnerabilities fixed in squid 3.0.STABLE17 https://bugzilla.redhat.com/show_bug.cgi?id=514013

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update squid' at the command line. For more information, refer to "Managing Software with yum", available at .

Name: squid
Product: Fedora 11
Version: 3.0.STABLE18
Release: 1.fc11
URL: http://www.squid-cache.org
Summary: The Squid proxy caching server

Topics%20covered

Topics Covered

security advisory denial of service Fedora security fix squid service stability

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here