FEDORA-2016-95edf19d8a

security update in Fedora 24 for squid

Status: stable 2 years ago

Bugfix


Security fix for CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556


Security fix for CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054


Security fix for CVE-2016-3947 and CVE-2016-3948

How to install

sudo dnf upgrade --advisory=FEDORA-2016-95edf19d8a

Comments 8

This update has been submitted for testing by luhliarik.

This update has obsoleted squid-3.5.19-1.fc24, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

LGTM

karma: +1

works fine here

karma: +1

This update has been submitted for stable by hno.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+2
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 2 years ago

Related Bugs 12

00 #1323590 CVE-2016-3947 squid: buffer overrun in Squid proxy pinger
00 #1323591 CVE-2016-3947 CVE-2016-3948 squid: 3.5.16 version [fedora-all]
00 #1323594 CVE-2016-3948 squid: denial of service issue in HTTP response processing
00 #1329126 CVE-2016-4051 squid: buffer overflow in cachemgr.cgi
00 #1329136 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid: multiple issues in ESI processing
00 #1329144 CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid: various flaws [fedora-all]
00 #1334233 CVE-2016-4553 squid: Cache poisoning issue in HTTP Request handling
00 #1334241 CVE-2016-4554 squid: Header Smuggling issue in HTTP Request processing
00 #1334246 CVE-2016-4555 squid: SegFault from ESIInclude::Start
00 #1334251 CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 squid: various flaws [fedora-all]
00 #1334787 CVE-2016-4556 squid: SegFault from ESIInclude::Start [fedora-all]
00 #1336993 Mistyped command in /etc/NetworkManager/dispatcher.d/20-squid

Automated Test Results