CLSA-2023-1703181485

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1703181485.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2023-1703181485
Upstream
Published
2023-12-21T17:58:09Z
Modified
2026-06-01T00:32:26.639363573Z
Summary
squid: Fix of 2 CVEs
Details
  • CVE-2023-49285: Fix date parsing in RFC 1123 to prevent Buffer OverRead
  • CVE-2023-49286: Fix DoS attack against Helper process management
References

Affected packages

TuxCare:CentOS:8.4 / squid

Package

Name
squid
Purl
pkg:rpm/tuxcare/squid?distro=centos-8.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7:4.11-4.module_el8.4.0+2161+76fa22b6.2.tuxcare.els8

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2023-1703181485.json"