Parent Directory | Revision Log
MGASA-2018-0458: squid-3.5.26-1.2.mga6
1 | type: security |
2 | subject: Updated squid packages fix security vulnerabilities |
3 | CVE: |
4 | - CVE-2018-19131 |
5 | - CVE-2018-19132 |
6 | src: |
7 | 6: |
8 | core: |
9 | - squid-3.5.26-1.2.mga6 |
10 | description: | |
11 | Due to incorrect input handling, Squid is vulnerable to a Cross-Site |
12 | Scripting vulnerability when generating HTTPS response messages about |
13 | TLS errors (CVE-2018-19131). |
14 | |
15 | Due to a memory leak in SNMP query rejection code, Squid is vulnerable |
16 | to a denial of service attack (CVE-2018-19132). |
17 | references: |
18 | - https://bugs.mageia.org/show_bug.cgi?id=23780 |
19 | - http://www.squid-cache.org/Advisories/SQUID-2018_4.txt |
20 | - http://www.squid-cache.org/Advisories/SQUID-2018_5.txt |
21 | - https://www.openwall.com/lists/oss-security/2018/11/09/1 |
22 | ID: MGASA-2018-0458 |
ViewVC Help | |
Powered by ViewVC 1.1.30 |