Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects.
* squid: improper check for new member in ESIExpression::Evaluate allows for stack buffer overflow (CVE-2019-12519)
* squid: improper access restriction upon Digest Authentication nonce replay could lead to remote code execution (CVE-2020-11945)
* squid: parsing of header Proxy-Authentication leads to memory corruption (CVE-2019-12525)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the AlmaLinux Packaging Team