Oracle Linux 7 Advisory ELSA-2023-6805 Fixes Critical Squid Flaw

oracle

November 9, 2023

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[7:3.5.20-17.0.1] - Mutiple CVE fixes for squid [Orabug: 33146289] - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing (#778) - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing (#788) - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range requests (#790) - Resolves: CVE-2021-33620 squid: Handle more partial responses (#791) [7:3.5.20-17.9] - Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847)

Topics Covered

security advisory denial of service critical squid oracle linux

SRPMs

https://oss.oracle.com:443/ol7/SRPMS-updates//squid-3.5.20-17.0.1.el7_9.9.src.rpm

x86_64

aarch64

squid-3.5.20-17.0.1.el7_9.9.aarch64.rpm squid-migration-script-3.5.20-17.0.1.el7_9.9.aarch64.rpm squid-sysvinit-3.5.20-17.0.1.el7_9.9.aarch64.rpm

Severity

critical

Lowest

Low

Medium

High

Critical

Related CVEs: CVE-2023-46847

Topics Covered

security advisory denial of service critical squid oracle linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Oracle Linux 7 Advisory ELSA-2023-6805 Fixes Critical Squid Flaw

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Oracle Linux 7 Advisory ELSA-2023-6805 Fixes Critical Squid Flaw

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!