CLSA-2021-1634925600

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925600.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2021-1634925600
Upstream
Published
2021-10-22T18:00:00Z
Modified
2026-06-01T00:31:42.332011504Z
Summary
Fixed CVEs in squid: CVE-2020-15049, CVE-2020-14058
Details
  • CVE-2020-14058: fix handling of unknown SSL errors which resulted in denial of service
  • CVE-2020-15049: fix incorrect validation of Content-Length field leading to Http smuggling and Poisoning attack
References

Affected packages

TuxCare:OracleLinux:6 / squid

Package

Name
squid
Purl
pkg:rpm/tuxcare/squid?distro=oraclelinux-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7:3.1.23-30.el6.cloudlinux.els

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925600.json"