USN-565-1: Squid vulnerability - Security Advisories (RSS)

iBot · #1 (**permalink**) 01-09-2008

Referenced CVEs:
CVE-2007-6239

Description:
=========================================================== Ubuntu Security Notice USN-565-1 January 09, 2008squid vulnerabilityCVE-2007-6239===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 6.10Ubuntu 7.04Ubuntu 7.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: squid 2.5.12-4ubuntu2.3Ubuntu 6.10: squid 2.6.1-3ubuntu1.5Ubuntu 7.04: squid 2.6.5-4ubuntu2.1Ubuntu 7.10: squid 2.6.14-1ubuntu2.1In general, a standard system upgrade is sufficient to effect thenecessary changes.Details follow:It was discovered that Squid did not always clean up cache memorycorrectly. A remote attacker could manipulate cache update replies andcause Squid to use all available memory, leading to a denial of service.

More...

More UNIX and Linux Forum Topics You Might Find Helpful
Thread	Thread Starter	Forum	Replies	Last Post
Squid+DNS	surfer24	Linux	6	06-05-2008 12:44 AM
USN-601-1: Squid vulnerability	iBot	Security Advisories (RSS)	0	04-14-2008 01:50 PM
Squid dns	beardiebeardie	UNIX for Dummies Questions & Answers	1	02-24-2008 11:19 PM
S-169: Squid Vulnerability	iBot	Security Advisories (RSS)	0	02-11-2008 01:10 PM
squid/porn.txt	vaillant	UNIX for Dummies Questions & Answers	1	03-29-2007 08:05 AM

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode