ALT-BU-2015-2264-1
Branch sisyphus update bulletin.
Closed vulnerabilities
BDU:2015-00691
Уязвимость программного обеспечения Squid HTTP Proxy Server, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Modified: 2024-11-21
CVE-2014-6270
Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow.
- SUSE-SU-2016:1996
- SUSE-SU-2016:1996
- SUSE-SU-2016:2089
- SUSE-SU-2016:2089
- [oss-security] 20140909 CVE-Request: squid snmp off-by-one
- [oss-security] 20140909 CVE-Request: squid snmp off-by-one
- [oss-security] 20140909 Re: CVE-Request: squid snmp off-by-one
- [oss-security] 20140909 Re: CVE-Request: squid snmp off-by-one
- http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
- http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
- 69686
- 69686
- USN-2921-1
- USN-2921-1
- https://bugzilla.novell.com/show_bug.cgi?id=895773
- https://bugzilla.novell.com/show_bug.cgi?id=895773
- https://bugzilla.redhat.com/show_bug.cgi?id=1139967
- https://bugzilla.redhat.com/show_bug.cgi?id=1139967
- squid-cve20146270-bo(95873)
- squid-cve20146270-bo(95873)
- GLSA-201607-01
- GLSA-201607-01
Modified: 2024-11-21
CVE-2014-7141
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.
- SUSE-SU-2016:1996
- SUSE-SU-2016:2089
- [oss-security] 20140909 CVE-Request: squid pinger remote DoS
- [oss-security] 20140916 Re: CVE-Request: squid pinger remote DoS
- [oss-security] 20140922 Re: CVE-Request: squid pinger remote DoS
- 60242
- USN-2422-1
- 69688
- http://www.squid-cache.org/Advisories/SQUID-2014_4.txt
- https://bugzilla.novell.com/show_bug.cgi?id=891268
- SUSE-SU-2016:1996
- https://bugzilla.novell.com/show_bug.cgi?id=891268
- http://www.squid-cache.org/Advisories/SQUID-2014_4.txt
- 69688
- USN-2422-1
- 60242
- [oss-security] 20140922 Re: CVE-Request: squid pinger remote DoS
- [oss-security] 20140916 Re: CVE-Request: squid pinger remote DoS
- [oss-security] 20140909 CVE-Request: squid pinger remote DoS
- SUSE-SU-2016:2089
Modified: 2024-11-21
CVE-2014-7142
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.
- SUSE-SU-2016:1996
- SUSE-SU-2016:2089
- [oss-security] 20140909 CVE-Request: squid pinger remote DoS
- [oss-security] 20140916 Re: Re: CVE-Request: squid pinger remote DoS
- [oss-security] 20140922 Re: CVE-Request: squid pinger remote DoS
- 60242
- USN-2422-1
- http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
- 70022
- http://www.squid-cache.org/Advisories/SQUID-2014_4.txt
- https://bugzilla.novell.com/show_bug.cgi?id=891268
- SUSE-SU-2016:1996
- https://bugzilla.novell.com/show_bug.cgi?id=891268
- http://www.squid-cache.org/Advisories/SQUID-2014_4.txt
- 70022
- http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
- USN-2422-1
- 60242
- [oss-security] 20140922 Re: CVE-Request: squid pinger remote DoS
- [oss-security] 20140916 Re: Re: CVE-Request: squid pinger remote DoS
- [oss-security] 20140909 CVE-Request: squid pinger remote DoS
- SUSE-SU-2016:2089
Package php5-fpm-fcgi updated to version 5.5.21.20150121-alt1 for branch sisyphus in task 139121.
Closed bugs
opcache не работает с apache2-mod_php5