Updated squid packages fix security vulnerabilities
Publication date: 07 Mar 2016Modification date: 07 Mar 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-2569 , CVE-2016-2570 , CVE-2016-2571
Description
Updated squid packages fix security vulnerability: Due to incorrect bounds checking Squid is vulnerable to a denial of service attack when processing HTTP responses (CVE-2016-2569, CVE-2016-2570, CVE-2016-2571).
References
- https://bugs.mageia.org/show_bug.cgi?id=17816
- http://www.squid-cache.org/Advisories/SQUID-2016_2.txt
- http://openwall.com/lists/oss-security/2016/02/26/2
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2569
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2570
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2571
SRPMS
5/core
- squid-3.4.13-1.4.mga5