| View previous topic :: View next topic |
| Author |
Message |
GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sat Jul 09, 2016 2:26 am Post subject: [ GLSA 201607-01 ] Squid |
 |
|
Gentoo Linux Security Advisory
Title: Squid: Multiple vulnerabilities (GLSA 201607-01)
Severity: normal
Exploitable: remote
Date: July 09, 2016
Bug(s): #536276, #575542, #578970, #580656, #582814
ID: 201607-01
Synopsis
Multiple vulnerabilities have been found in Squid, the worst of
which could lead to arbitrary code execution, or cause a Denial of Service
condition.
Background
Squid is a full-featured Web proxy cache designed to run on Unix
systems. It supports proxying and caching of HTTP, FTP, and other URLs,
as well as SSL support, cache hierarchies, transparent caching, access
control lists and many other features.
Affected Packages
Package: net-proxy/squid
Vulnerable: < 3.5.19
Unaffected: >= 3.5.19
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Squid. Please review
the CVE identifiers referenced below for details.
Impact
An attacker can possibly execute arbitrary code or create a Denial of
Service condition.
Workaround
There is no known workaround at this time.
Resolution
All Squid users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=net-proxy/squid-3.5.19"
|
References
CVE-2014-6270
CVE-2014-6270
CVE-2016-2569
CVE-2016-2569
CVE-2016-2570
CVE-2016-2570
CVE-2016-2571
CVE-2016-2571
CVE-2016-2572
CVE-2016-2572
CVE-2016-3947
CVE-2016-3948
CVE-2016-4051
CVE-2016-4052
CVE-2016-4053
CVE-2016-4054
CVE-2016-4553
CVE-2016-4554
CVE-2016-4555
CVE-2016-4556 |
|
| Back to top |
|
 |
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
News & Announcements
