[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ELSA-2016-1573 -- Oracle squid

ID: oval:org.secpod.oval:def:1501538Date: (C)2016-08-19   (M)2023-07-28
Class: PATCHFamily: unix




Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * It was found that the fix for CVE-2016-4051 released via RHSA-2016:1138 did not properly prevent the stack overflow in the munge_other_line function. A remote attacker could send specially crafted data to the Squid proxy, which would exploit the cachemgr CGI utility, possibly triggering execution of arbitrary code. Red Hat would like to thank Amos Jeffries for reporting this issue.

Platform:
Oracle Linux 6
Product:
squid
Reference:
ELSA-2016-1573
CVE-2016-5408
CVE    1
CVE-2016-5408
CPE    2
cpe:/o:oracle:linux:6
cpe:/a:squid-cache:squid

© SecPod Technologies