ClickCease CentOS 6 ELS: squid package gradual rollout completed - TuxCare

Join Our Popular Newsletter

Join 4,500+ Linux & Open Source Professionals!

2x a month. No spam.

CentOS 6 ELS: squid package gradual rollout completed

September 6, 2021 - TuxCare PR Team

A new updated squid package with the fix for the CVE-2020-14058 and CVE-2020-15049 within CentOS 6 ELS has been rolled out to 100% and is now available for download from our production repository.

CHANGELOG

squid-3.1.23-30.el6.cloudlinux.els

  • Fix handling of unknown SSL errors which resulted in denial of service (CVE-2020-14058)
  • Fix incorrect validation of Content-Length field leading to http smuggling and Poisoning attack (CVE-2020-15049)

UPDATE COMMAND

yum update squid*

 

Looking to automate vulnerability patching without kernel reboots, system downtime, or scheduled maintenance windows?

Learn About Live Patching with TuxCare

Become a TuxCare Guest Writer

Get started

Mail

Join

4,500

Linux & Open Source
Professionals!

Subscribe to
our newsletter