What Are You Looking For?

Sign Up
Oracle Linux Security Advisory ELSA-2023-6805

https://linux.oracle.com/errata/ELSA-2023-6805.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
squid-3.5.20-17.0.1.el7_9.9.aarch64.rpm
squid-migration-script-3.5.20-17.0.1.el7_9.9.aarch64.rpm
squid-sysvinit-3.5.20-17.0.1.el7_9.9.aarch64.rpm


SRPMS:
https://oss.oracle.com/ol7/SRPMS-updates//squid-3.5.20-17.0.1.el7_9.9.src.rpm

Related CVEs:

CVE-2023-46847




Description of changes:

[7:3.5.20-17.0.1]
- Mutiple CVE fixes for squid [Orabug: 33146289]
- Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing (#778)
- Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing (#788)
- Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range requests (#790)
- Resolves: CVE-2021-33620 squid: Handle more partial responses (#791)

[7:3.5.20-17.9]
- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
  (CVE-2023-46847)


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle7: ELSA-2023-6805: squid security Critical (aarch64) Security Up

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[7:3.5.20-17.0.1] - Mutiple CVE fixes for squid [Orabug: 33146289] - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing (#778) - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing (#788) - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range requests (#790) - Resolves: CVE-2021-33620 squid: Handle more partial responses (#791) [7:3.5.20-17.9] - Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847)

SRPMs

https://oss.oracle.com/ol7/SRPMS-updates//squid-3.5.20-17.0.1.el7_9.9.src.rpm

x86_64

aarch64

squid-3.5.20-17.0.1.el7_9.9.aarch64.rpm squid-migration-script-3.5.20-17.0.1.el7_9.9.aarch64.rpm squid-sysvinit-3.5.20-17.0.1.el7_9.9.aarch64.rpm

i386

Severity
Related CVEs: CVE-2023-46847

Related News

How Kali Linux Can Help Security Test Your Network

Nov 21, 2023

CISA Orders Federal Agencies to Patch Looney Tunables Linux Bug

Nov 25, 2023

The 5 Best Immutable, Rock-Solid Linux Distros

Nov 12, 2023

Learn About the Best Features of Kali Linux

Nov 13, 2023

News

Advisories

HOWTOs

Features

A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug
Cyber Law in the Realm of Open-Source Software Security

About Us

Powered By

Footer Logo