SUSE 11-SP4 SUSE-SU-2016:1996-1 Important: Squid3 Denial Of Service

suse

August 9, 2016

An update that fixes 25 vulnerabilities is now available

Summary

This update for squid3 fixes the following issues: - Multiple issues in pinger ICMP processing. (CVE-2014-7141, CVE-2014-7142) - CVE-2016-3947: Buffer overrun issue in pinger ICMPv6 processing. (bsc#973782) - CVE-2016-4554: fix header smuggling issue in HTTP Request processing (bsc#979010) - fix multiple Denial of Service issues in HTTP Response processing. (CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572, bsc#968392, bsc#968393, bsc#968394, bsc#968395) - CVE-2016-3948: Fix denial of service in HTTP Response processing (bsc#973783) - CVE-2016-4051: fixes buffer overflow in cachemgr.cgi (bsc#976553) - CVE-2016-4052, CVE-2016-4053, CVE-2016-4054: * fixes multiple issues in ESI processing (bsc#976556) - CVE-2016-4556: fixes double free vulnerability in Esi.cc (bsc#979008)

Topics Covered

security advisory denial of service buffer overrun important suse network issue squid3

References

#895773 #902197 #938715 #963539 #967011 #968392

#968393 #968394 #968395 #973782 #973783 #976553

#976556 #976708 #979008 #979009 #979010 #979011

Cross- CVE-2011-3205 CVE-2011-4096 CVE-2012-5643

CVE-2013-0188 CVE-2013-4115 CVE-2014-0128

CVE-2014-6270 CVE-2014-7141 CVE-2014-7142

CVE-2015-5400 CVE-2016-2390 CVE-2016-2569

CVE-2016-2570 CVE-2016-2571 CVE-2016-2572

CVE-2016-3947 CVE-2016-3948 CVE-2016-4051

CVE-2016-4052 CVE-2016-4053 CVE-2016-4054

CVE-2016-4553 CVE-2016-4554 CVE-2016-4555

CVE-2016-4556

Affected Products:

SUSE Linux Enterprise Server 11-SP4

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/security/cve/CVE-2011-3205.html

https://www.suse.com/security/cve/CVE-2011-4096.html

https://www.suse.com/security/...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2016:1996-1

Rating: important

Topics Covered

security advisory denial of service buffer overrun important suse network issue squid3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 11-SP4 SUSE-SU-2016:1996-1 Important: Squid3 Denial Of Service

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 11-SP4 SUSE-SU-2016:1996-1 Important: Squid3 Denial Of Service

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!