ELSA-2024-0046 -- Oracle libecap_squidID: oval:org.secpod.oval:def:1507237 | Date: (C)2024-01-05 (M)2024-04-29 |
Class: PATCH | Family: unix |
libecap squid [7:4.15-7.5] - Fix squid: Denial of Service in SSL Certificate validation - Fix squid: NULL pointer dereference in the gopher protocol code - Fix squid: Buffer over-read in the HTTP Message processing feature - Fix squid: Incorrect Check of Function Return Value In Helper Process management [7:4.15-7.3] - Fix squid: DoS against HTTP and HTTPS [7:4.15-7.1] - Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP