MGASA-2014-0369

Source
https://advisories.mageia.org/MGASA-2014-0369.html
Import Source
https://advisories.mageia.org/MGASA-2014-0369.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2014-0369
Related
Published
2014-09-05T09:07:37Z
Modified
2014-09-05T08:35:31Z
Summary
Updated squid packages fix CVE-2014-3609
Details

Updated squid packages fix security vulnerability:

Matthew Daley discovered that Squid 3 did not properly perform input validation in request parsing. A remote attacker could send crafted Range requests to cause a denial of service (CVE-2014-3609).

References
Credits

Affected packages

Mageia:4 / squid

Package

Name
squid
Purl
pkg:rpm/mageia/squid?distro=mageia-4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.3.13-1.mga4

Ecosystem specific

{
    "section": "core"
}

Mageia:3 / squid

Package

Name
squid
Purl
pkg:rpm/mageia/squid?distro=mageia-3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.2.10-1.7.mga3

Ecosystem specific

{
    "section": "core"
}