ClickCease OracleLinux 6 ELS: squid package released - TuxCare

Join Our Popular Newsletter

Join 4,500+ Linux & Open Source Professionals!

2x a month. No spam.

OracleLinux 6 ELS: squid package released

August 12, 2021 - TuxCare PR Team

A new updated squid package within OracleLinux OS 6 ELS is now available for download from our production repository.

Changelog

squid-3.1.23-29.el6.cloudlinux.els

  • CVE-2020-8449: fix improper HTTP request validation allowing access to resources which are prohibited by security filters
  • CVE-2020-8450: fix incorrect buffer managment leading to buffer overflow
  • CVE-2020-8517: fix incorrect input validation allowing writing outside of buffer and leading to denial of service
  • CVE-2020-11945: fix nonce reference counter overflow allowing replay attack
  • CVE-2020-25907: fix improper input validation allowing HTTP smuggling from trusted client
  • CVE-2021-24606: fix handle of EOF in peerDigestHandleReply() leading to Denial of service
  • CVE-2021-28651: fix memory leak leading to denial of service

Update command

yum update squid*

 

Looking to automate vulnerability patching without kernel reboots, system downtime, or scheduled maintenance windows?

Learn About Live Patching with TuxCare

Become a TuxCare Guest Writer

Get started

Mail

Join

4,500

Linux & Open Source
Professionals!

Subscribe to
our newsletter