Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP2:Update
patchinfo.31686
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.31686
<patchinfo incident="31686"> <issue tracker="bnc" id="1216803">VUL-0: CVE-2023-46724: squid: Denial of Service in SSL Certificate validation</issue> <issue tracker="bnc" id="1216495">VUL-0: CVE-2023-46847: squid: Denial of Service in HTTP Digest Authentication (SQUID-2023:3)</issue> <issue tracker="bnc" id="1216926">VUL-0: CVE-2023-46728: squid: Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway.</issue> <issue tracker="bnc" id="1217654">VUL-0: squid, squid3: X-Forwarded-For Stack Overflow</issue> <issue tracker="bnc" id="1217274">VUL-0: squid, squid3: One-Byte Buffer OverRead in HTTP Request Header Parsing</issue> <issue tracker="cve" id="2023-46847"/> <issue tracker="cve" id="2023-46728"/> <issue tracker="cve" id="2023-46724"/> <packager>adamm</packager> <rating>important</rating> <category>security</category> <summary>Security update for squid</summary> <description>This update for squid fixes the following issues: - Fixed overread in HTTP request header parsing (bsc#1217274). - Fixed X-Forwarded-For Stack Overflow (bsc#1217654). - CVE-2023-46728: Fixed NULL pointer dereference in gopher gateway (bsc#1216926). - CVE-2023-46847: Fixed denial of Service in HTTP Digest Authentication (bsc#1216495). - CVE-2023-46724: Fixed validation of certificates with CN=* (bsc#1216803). </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor