Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 38: FEDORA-2023-6317eaa767 critical: squid DoS and SSL issues

fedora
Calendar Grey December 29, 2023
Dist Fedora Esm H88
The latest Ubuntu version featuring OpenSSH 9.0 introduces significant performance enhancements while discontinuing FTP for improved security.
- New version 6.6 - Important security fixes - Removed gopher support

Summary

Squid is a high-performance proxy caching server for Web clients,

supporting FTP, gopher, and HTTP data objects. Unlike traditional

caching software, Squid handles all requests in a single,

non-blocking, I/O-driven process. Squid keeps meta data and especially

hot objects cached in RAM, caches DNS lookups, supports non-blocking

DNS lookups, and implements negative caching of failed requests.

Squid consists of a main server program squid, a Domain Name System

lookup program (dnsserver), a program for retrieving FTP data

(ftpget), and some management and client tools.

Update Information:

- New version 6.6 - Important security fixes - Removed gopher support

Topics%20covered

Topics Covered

security advisory Fedora DoS security fix squid SSL

Change Log

* Wed Dec 13 2023 Yaakov Selkowitz - 7:6.6-1 - new version 6.6

References


[ 1 ] Bug #2250224 - CVE-2023-46724 squid: Denial of Service in SSL Certificate validation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2250224 [ 2 ] Bug #2250229 - TRIAGE CVE-2023-46728 squid: NULL pointer dereference in the gopher protocol code [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2250229 [ 3 ] Bug #2252919 - CVE-2023-49288 squid: Use-After-Free in the HTTP Collapsed Forwarding Feature [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252919 [ 4 ] Bug #2252924 - CVE-2023-49286 squid: Incorrect Check of Function Return Value In Helper Process management [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252924 [ 5 ] Bug #2252927 - CVE-2023-49285 squid: Buffer over-read in the HTTP Message processing feature [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252927 [ 6 ] Bug #2253417 - squid-6.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2253417 ...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-6317eaa767' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: squid
Product: Fedora 38
Version: 6.6
Release: 1.fc38
URL: http://www.squid-cache.org
Summary: The Squid proxy caching server

Topics%20covered

Topics Covered

security advisory Fedora DoS security fix squid SSL

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here