FEDORA-2016-95edf19d8a

security update in Fedora 24 for squid

Status: stable 3 years ago

Bugfix


Security fix for CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556


Security fix for CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054


Security fix for CVE-2016-3947 and CVE-2016-3948

Comments 8

This update has been submitted for testing by luhliarik.

This update has obsoleted squid-3.5.19-1.fc24, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

LGTM

karma: +1

works fine here

karma: +1

This update has been submitted for stable by hno.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+2
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 12

00 #1323590 CVE-2016-3947 squid: buffer overrun in Squid proxy pinger
00 #1323591 CVE-2016-3947 CVE-2016-3948 squid: 3.5.16 version [fedora-all]
00 #1323594 CVE-2016-3948 squid: denial of service issue in HTTP response processing
00 #1329126 CVE-2016-4051 squid: buffer overflow in cachemgr.cgi
00 #1329136 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid: multiple issues in ESI processing
00 #1329144 CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid: various flaws [fedora-all]
00 #1334233 CVE-2016-4553 squid: Cache poisoning issue in HTTP Request handling
00 #1334241 CVE-2016-4554 squid: Header Smuggling issue in HTTP Request processing
00 #1334246 CVE-2016-4555 squid: SegFault from ESIInclude::Start
00 #1334251 CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 squid: various flaws [fedora-all]
00 #1334787 CVE-2016-4556 squid: SegFault from ESIInclude::Start [fedora-all]
00 #1336993 Mistyped command in /etc/NetworkManager/dispatcher.d/20-squid

Automated Test Results