Debian Linux Security Advisory 5637-1 - Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid's HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow while performing HTTP Digest authentication. Other issues facilitate request smuggling past a firewall or a denial of service against Squid's Helper process management.
a79ef3e7a5505aef83c8e1d9026a34f64acecaa9ccd3e41b225ac5500d8a96e7
Ubuntu Security Notice 6500-1 - Joshua Rogers discovered that Squid incorrectly handled validating certain SSL certificates. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS, Ubuntu 23.04, and Ubuntu 23.10. Joshua Rogers discovered that Squid incorrectly handled the Gopher protocol. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service. Gopher support has been disabled in this update. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04.
89e080ec0dca666e58acac5a17ad942076e2d2723e487a8ff043ca16623f5d78
Red Hat Security Advisory 2023-7213-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
7f689e4cfcd326d9da5e56b620290f5a1ee11c218aaf6e495eb641fc2715856d
Red Hat Security Advisory 2023-6810-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
e7af98fff32f2fe8aef082c45ae13567bf73784005358de86dd6c42714752115
Red Hat Security Advisory 2023-6804-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
c6c8126b5b0e15979faf39a4d5afbf09b56d9f4588f5022e2d6b20e862dd6bef
Red Hat Security Advisory 2023-6803-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
1e2db83b66e3579fe1f1440985ca80e77a6ce75f401f69f5014a9f6b1314a513
Red Hat Security Advisory 2023-6801-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include a denial of service vulnerability.
19d9a4b5280fde4aada0ea55e75e3ad6994073bbfae701302175cd2ffced43f1
Red Hat Security Advisory 2023-6748-01 - An update for squid is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
56f37069d857ba89846484b2a52c2c63edcb3d37e59fe064b1f9129bd298f1ea
Red Hat Security Advisory 2023-6268-01 - An update for squid is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Issues addressed include a denial of service vulnerability.
c3199fff8ed391bc77b92feebccc1d1019146c9325fae10496d481b32d44e3a6
Red Hat Security Advisory 2023-6267-01 - An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
a3e42726e4e8c25aac4acbd033196c096105a21dab156551ed4945971b83020f
Red Hat Security Advisory 2023-6266-01 - An update for squid is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
e831d8c70816b08d95c1060dc291152d3be3f2862be73b3c8c276b1c588d519a