|
|
Subscribe / Log in / New account

squid: denial of service

Package(s):squid CVE #(s):CVE-2014-0128
Created:April 2, 2014 Updated:June 10, 2014
Description: From the Red Hat bugzilla:

A denial of service flaw was found in Squid when SSL-Bump was used. When SSL-Bump is enabled, an attacker could send crafted requests that would cause Squid to crash with an assertion.

This issue affects versions 3.1 and later. Versions 3.0 and older, and version 2, are not vulnerable. The issue was fixed in versions 3.3.12 and 3.4.4.

Alerts:
SUSE SUSE-SU-2016:2089-1 squid3 2016-08-16
SUSE SUSE-SU-2016:1996-1 squid3 2016-08-09
Mandriva MDVSA-2015:103 squid 2015-03-29
Gentoo 201411-11 squid 2014-11-27
Mandriva MDVSA-2014:114 squid 2014-06-10
Scientific Linux SLSA-2014:0597-1 squid 2014-06-03
Oracle ELSA-2014-0597 squid 2014-06-03
CentOS CESA-2014:0597 squid 2014-06-04
Red Hat RHSA-2014:0597-01 squid 2014-06-03
Mageia MGASA-2014-0192 squid 2014-04-24
openSUSE openSUSE-SU-2014:0559-1 squid 2014-04-22
Fedora FEDORA-2014-4800 squid 2014-04-15
openSUSE openSUSE-SU-2014:0513-1 squid 2014-04-11
Mageia MGASA-2014-0168 squid 2014-04-09
Fedora FEDORA-2014-3915 squid 2014-04-02
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds