[ALSA-2024:4861] Moderate: squid security update
Type:
security
Severity:
moderate
Release date:
2024-07-26
Description:
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): * squid: vulnerable to a Denial of Service attack against Cache Manager error responses (CVE-2024-23638) * squid: Out-of-bounds write error may lead to Denial of Service (CVE-2024-37894) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 squid-5.5-13.el9_4.aarch64.rpm 120b5f44cf609dbfb7e694eb8e390b52667081714f0e9ee6f3dfe99c18ec89fb
ppc64le squid-5.5-13.el9_4.ppc64le.rpm d13ac30825674e9b0b1a0a3e1f86611f4bd3e68b3033d3d2bcdf87840f8dc1ff
s390x squid-5.5-13.el9_4.s390x.rpm 78b15be567b83005c6df015c76734e27cae4034fdb3fd843d14b4ff7542153e6
x86_64 squid-5.5-13.el9_4.x86_64.rpm bb89a2ced0511f4ea0aa4021c33fb71ba9b4bb3a7acfed9e4d91fb7ab48815fa
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.