RLSA-2024:9644

Synopsis

Important: squid:4 security update

Description

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects.

Security Fix(es):

* squid: vulnerable to a Denial of Service attack against Cache Manager error responses (CVE-2024-23638)

* squid: Denial of Service processing ESI response content (CVE-2024-45802)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2260051 2322154

CVEs

CVE-2024-23638 CVE-2024-45802

Affected packages

Rocky Linux 8 aarch64 - AppStream

libecap-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.aarch64.rpm libecap-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.src.rpm libecap-debuginfo-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.aarch64.rpm libecap-debugsource-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.aarch64.rpm libecap-devel-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.aarch64.rpm squid-7:4.15-10.module+el8.10.0+1758+80ba9f4b.aarch64.rpm squid-7:4.15-10.module+el8.10.0+1758+80ba9f4b.src.rpm squid-debuginfo-7:4.15-10.module+el8.10.0+1758+80ba9f4b.aarch64.rpm squid-debugsource-7:4.15-10.module+el8.10.0+1758+80ba9f4b.aarch64.rpm

Rocky Linux 8 x86_64 - AppStream

libecap-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.src.rpm libecap-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.x86_64.rpm libecap-debuginfo-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.x86_64.rpm libecap-debugsource-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.x86_64.rpm libecap-devel-0:1.0.1-2.module+el8.9.0+1437+df5ea8f0.x86_64.rpm squid-7:4.15-10.module+el8.10.0+1758+80ba9f4b.src.rpm squid-7:4.15-10.module+el8.10.0+1758+80ba9f4b.x86_64.rpm squid-debuginfo-7:4.15-10.module+el8.10.0+1758+80ba9f4b.x86_64.rpm squid-debugsource-7:4.15-10.module+el8.10.0+1758+80ba9f4b.x86_64.rpm