Download
| Alert*
oval:org.secpod.oval:def:61805
squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:89050467 This update for squid to version 4.10 fixes the following issues: Security issues fixed: - CVE-2019-12528: Fixed an information disclosure flaw in the FTP gateway . - CVE-2020-8449: Fixed a buffer overflow when squid is acting as reverse-proxy . - CVE-2020-8450: Fixed a buffer overflow when squid is ... oval:org.secpod.oval:def:89000599 This update for squid to version 4.10 fixes the following issues: Security issues fixed: - CVE-2019-12528: Fixed an information disclosure flaw in the FTP gateway . - CVE-2020-8449: Fixed a buffer overflow when squid is acting as reverse-proxy . - CVE-2020-8450: Fixed a buffer overflow when squid is ... oval:org.secpod.oval:def:705392 squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:1701342 An issue was discovered in Squid before 4.10. Due to incorrect input validation, the NTLM authentication credentials parser in ext_lm_group_acl may write to memory outside the credentials buffer. On systems with memory access protections, this can result in the helper process being terminated unexpe ... oval:org.secpod.oval:def:97540 [CLSA-2021:1628782974] Fixed CVEs in squid: CVE-2020-8449, CVE-2020-8450, CVE-2020-8517 oval:org.secpod.oval:def:1601717 Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as being suitable for delivery to multiple clients. An issue was discovered in Squid before 4.10. Due to ... oval:org.secpod.oval:def:2105897 Oracle Solaris 11 - ( CVE-2019-12526 ) oval:org.secpod.oval:def:89000336 This update for squid fixes the following issues: - CVE-2019-12528: Fixed an information disclosure flaw in the FTP gateway . - CVE-2019-12526: Fixed potential remote code execution during URN processing . - CVE-2019-12523,CVE-2019-18676: Fixed multiple improper validations in URI processing . - CVE ... oval:org.secpod.oval:def:97559 [CLSA-2021:1632262221] Fixed 9 CVEs in squid34 oval:org.secpod.oval:def:89000270 This update for squid to version 4.11 fixes the following issues: - CVE-2020-11945: Fixed a potential remote code execution vulnerability when using HTTP Digest Authentication . - CVE-2019-12519, CVE-2019-12521: Fixed incorrect buffer handling that can result in cache poisoning, remote execution, an ... oval:org.secpod.oval:def:89000472 This update for squid to version 4.11 fixes the following issues: - CVE-2020-11945: Fixed a potential remote code execution vulnerability when using HTTP Digest Authentication . - CVE-2019-12519, CVE-2019-12521: Fixed incorrect buffer handling that can result in cache poisoning, remote execution, an ... oval:org.secpod.oval:def:89000262 This update for squid3 fixes the following issues: - Fixed a Cache Poisoning and Request Smuggling attack - Fixed incorrect buffer handling that can result in cache poisoning, remote execution, and denial of service attacks when processing ESI responses - Fixed handling of hostname in cachemgr.cgi ... |