Download
| Alert*
|
oval:org.secpod.oval:def:708603
squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:94745 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:94746 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:95136 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46 ... oval:org.secpod.oval:def:2600394 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:96488 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:1507152 [7:5.5-6.1] - Resolves: RHEL-14819 - squid: squid: denial of Servicein FTP - Resolves: RHEL-14807 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14780 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP [7:5.5-6] - Resolves: #2231827 - Crash with half_cl ... oval:org.secpod.oval:def:96487 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:89051060 This update for squid fixes the following issues: * CVE-2023-46846: Request/Response smuggling in HTTP/1.1 and ICAP . * CVE-2023-46847: Denial of Service in HTTP Digest Authentication . * CVE-2023-46724: Fix validation of certificates with CN=* . * CVE-2023-46848: Denial of Service in FTP . oval:org.secpod.oval:def:89051083 This update for squid fixes the following issues: * CVE-2023-46846: Request/Response smuggling in HTTP/1.1 and ICAP . * CVE-2023-46847: Denial of Service in HTTP Digest Authentication . * CVE-2023-46724: Fix validation of certificates with CN=* . * CVE-2023-46848: Denial of Service in FTP . oval:org.secpod.oval:def:95284 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46846) oval:org.secpod.oval:def:1507134 [7:5.5-5.el9_2.1] - Improve HTTP chunked encoding compliance - Fix stack buffer overflow when parsing Digest Authorization - Fix userinfo percent-encoding oval:org.secpod.oval:def:95141 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46 ... oval:org.secpod.oval:def:1702216 A flaw was found in squid. When Squid is parsing ESI, it keeps the ESI elements in ESIContext. ESIContext contains a buffer for holding a stack of ESIElements. When a new ESIElement is parsed, it is added via addStackElement. addStackElement has a check for the number of elements in this buffer, but ... oval:org.secpod.oval:def:2108455 Oracle Solaris 11 - ( CVE-2024-25617 ) oval:org.secpod.oval:def:5800215 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP * SQUID-2023:5 squid: denial of ... oval:org.secpod.oval:def:89051070 This update for squid fixes the following issues: * CVE-2023-46846: Request/Response smuggling in HTTP/1.1 and ICAP . * CVE-2023-46847: Denial of Service in HTTP Digest Authentication . * CVE-2023-46724: Fix validation of certificates with CN=* . * CVE-2023-46848: Denial of Service in FTP . oval:org.secpod.oval:def:1507162 libecap squid [7:4.15-7.1] - Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP [7:4.15-7] - Resolves: #2076717 - Crash with half_closed_client on oval:org.secpod.oval:def:1507140 libecap squid [4.15-6.0.1] - Improve HTTP chunked encoding compliance - Fix stack buffer overflow when parsing Digest Authorization oval:org.secpod.oval:def:2600363 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:95148 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * squid: Denial of Service in HTTP Digest Authentication (CVE-2023-46847) * squid: Request/Response smuggling in HTTP/1.1 and ICAP (CVE-2023-46846) * squid: denial of Se ... oval:org.secpod.oval:def:19500504 Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using '--with-openssl' are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a remote server to ... oval:org.secpod.oval:def:4501509 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * squid: Denial of Service in HTTP Digest Authentication * squid: Request/Response smuggling in HTTP/1.1 and ICAP For more details about the security issue, including the ... oval:org.secpod.oval:def:4501502 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix: * SQUID-2023:3 squid: Denial of Service in HTTP Digest Authentication * SQUID-2023:1 squid: Request/Response smuggling in HTTP/1.1 and ICAP For more details about the secu ... oval:org.secpod.oval:def:613004 Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid"s HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow wh ... oval:org.secpod.oval:def:2501216 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:2501270 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. oval:org.secpod.oval:def:1601903 Due to chunked decoder lenience Squid is vulnerable to Request/Response smuggling attacks when parsing HTTP/1.1 and ICAP messages oval:org.secpod.oval:def:99970 Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid"s HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow wh ... |
