Package name
squid
Date
2009-07-27
Advisory ID
MDVSA-2009:161
Affected versions
2009.0 x86_64 , 2009.1 i586 , 2009.0 i586 , 2008.1 i586 , 2008.1 x86_64 , 2009.1 x86_64

Problem description

Multiple vulnerabilities has been found and corrected in squid:

Due to incorrect buffer limits and related bound checks Squid is
vulnerable to a denial of service attack when processing specially
crafted requests or responses (CVE-2009-2621).

Due to incorrect data validation Squid is vulnerable to a denial
of service attack when processing specially crafted responses
(CVE-2009-2622).

This update provides fixes for these vulnerabilities.

Updated packages

2009.0 x86_64

 0549854b66d263a0f6ea2b591120e410  2009.0/x86_64/squid-3.0-8.2mdv2009.0.x86_64.rpm
 c5df45087ab04a8672de713ee170f537  2009.0/x86_64/squid-cachemgr-3.0-8.2mdv2009.0.x86_64.rpm 
 8e519b1f4084a6f9592a41ba12eef2b2  2009.0/SRPMS/squid-3.0-8.2mdv2009.0.src.rpm

2009.1 i586

 8e1d67dadac6cd23a61b62012881b7fc  2009.1/i586/squid-3.0-14.1mdv2009.1.i586.rpm
 f74b71e8cffe0b7be58815c882e3271f  2009.1/i586/squid-cachemgr-3.0-14.1mdv2009.1.i586.rpm 
 476b0c52619fc23922d1a8f971ef49c9  2009.1/SRPMS/squid-3.0-14.1mdv2009.0.src.rpm

2009.0 i586

 278f7299ace72030f591cc7b65a6da6b  2009.0/i586/squid-3.0-8.2mdv2009.0.i586.rpm
 74d1b3725d455597cdd70c0738c0c41d  2009.0/i586/squid-cachemgr-3.0-8.2mdv2009.0.i586.rpm 
 8e519b1f4084a6f9592a41ba12eef2b2  2009.0/SRPMS/squid-3.0-8.2mdv2009.0.src.rpm

2008.1 i586

 e8f9817a56da85d7d49c602f8932f97d  2008.1/i586/squid-3.0-1.2mdv2008.1.i586.rpm
 e073730066a687d1c4918a3bee310b76  2008.1/i586/squid-cachemgr-3.0-1.2mdv2008.1.i586.rpm 
 2f7906bdeb7a4a0bb54c0bdb73ded61d  2008.1/SRPMS/squid-3.0-1.2mdv2008.1.src.rpm

2008.1 x86_64

 a69b2935de73a9e155082fe780ad33fc  2008.1/x86_64/squid-3.0-1.2mdv2008.1.x86_64.rpm
 748775149e48e9feeeed9bc8dc5032af  2008.1/x86_64/squid-cachemgr-3.0-1.2mdv2008.1.x86_64.rpm 
 2f7906bdeb7a4a0bb54c0bdb73ded61d  2008.1/SRPMS/squid-3.0-1.2mdv2008.1.src.rpm

2009.1 x86_64

 7dd5a28f52f86dbcd34a5814e9d3ca13  2009.1/x86_64/squid-3.0-14.1mdv2009.1.x86_64.rpm
 b2caa24303c818b125a972fc130d088e  2009.1/x86_64/squid-cachemgr-3.0-14.1mdv2009.1.x86_64.rpm 
 476b0c52619fc23922d1a8f971ef49c9  2009.1/SRPMS/squid-3.0-14.1mdv2009.0.src.rpm

References