Synopsis

squid bug fix update

Type/Severity

Bug Fix Advisory

Topic

Updated squid packages that fix several bugs are now available for Red Hat
Enterprise Linux 6.

Description

Squid is a high-performance proxy caching server for web clients, supporting
FTP, Gopher, and HTTP data objects.

This update fixes the following bugs:

• Prior to this update, the /etc/init.d/squid initialization script did not
  describe the condrestart option, and therefore it did not appear in the Usage
  message. This bug has been fixed, and condrestart is now displayed correctly in
  the Usage message. (BZ#876980)
  
• Under certain circumstances, the comm_write() function of the squid utility
  attempted to write to file descriptors that were being closed. Consequently, the
  squid utility was aborted. With this update, a patch that handles the write
  attempt has been introduced. As a result, squid is no longer aborted in the
  aforementioned scenario. (BZ#998809)
  
• Due to a bug in the default /etc/httpd/conf.d/squid.conf configuration file,
  the squid utility was not allowed to access the CacheManager tool at
  http://localhost/Squid/cgi-bin/cachemgr.cgi. The bug has been fixed, and squid
  can now access CacheManager without complications. (BZ#1011952)
  
• Under certain circumstances, the squid utility leaked Domain Name System (DNS)
  queries. Consequently, squid often reached the limit of maximum locks set to
  65,535 and terminated unexpectedly. With this update, several changes have been
  made to prevent leaked queries. Also, the lock limit has been increased to the
  maximum value of the integer data type. (BZ#1034616)
  
• Previously, after receiving a malformed Domain Name System (DNS) response, the
  squid utility terminated unexpectedly and did not start again. The underlying
  source code has been modified, and as a result, squid now handles malformed DNS
  responses without complications. (BZ#1047839)
  
• Under certain circumstances, child processes of the squid utility terminated
  unexpectedly and generated a core file. This bug has been fixed, and squid
  processes no longer exit abnormally. (BZ#1058207)
  
• Previously, the AuthBasicUserRequest method of the squid utility overrode the
  default user() methods with its own data. Consequently, a memory leak occurred
  when using basic authentication, which led to high memory consumption of squid.
  With this update, the aforementioned override was removed and the memory leak no
  longer occurs. (BZ#1066368, BZ#1089614)
  

Users of squid are advised to upgrade to these updated packages, which fix these
bugs. After installing this update, the squid service will be restarted
automatically.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/articles/11258

Affected Products

• Red Hat Enterprise Linux Server 6 x86_64
• Red Hat Enterprise Linux Server 6 i386
• Red Hat Enterprise Linux Workstation 6 x86_64
• Red Hat Enterprise Linux Workstation 6 i386
• Red Hat Enterprise Linux for IBM z Systems 6 s390x
• Red Hat Enterprise Linux for Power, big endian 6 ppc64
• Red Hat Enterprise Linux Server from RHUI 6 x86_64
• Red Hat Enterprise Linux Server from RHUI 6 i386

Fixes

• BZ - 876980 - Init script: missing condrestart in 'Usage'
• BZ - 1011952 - cachemgr.cgi doesn't work by default

CVEs

(none)

References

(none)

Red Hat Enterprise Linux Server 6

SRPM
squid-3.1.10-29.el6.src.rpm	SHA-256: f5a18e5aa33bcd8f046c8160a24c9e3be04edc090fc51adc5875eec4556a4497
x86_64
squid-3.1.10-29.el6.x86_64.rpm	SHA-256: 63bd600bf68a804e9b7a3349f33091359fb379b3d8abe2a479ffa80afcebf4ec
squid-debuginfo-3.1.10-29.el6.x86_64.rpm	SHA-256: 3a3cf5cb66e964518a69877a24f4d8e8d3ad20f669885004fe32eec60a025277
i386
squid-3.1.10-29.el6.i686.rpm	SHA-256: 327721b8a835cc270ff7ed0f811da51461f4426823d903c2fb657a1797361005
squid-debuginfo-3.1.10-29.el6.i686.rpm	SHA-256: f289bb89615af38106b657efe84d0e4c962ca4ef8abd314b4a97ce1e57dfb417

Red Hat Enterprise Linux Workstation 6

SRPM
squid-3.1.10-29.el6.src.rpm	SHA-256: f5a18e5aa33bcd8f046c8160a24c9e3be04edc090fc51adc5875eec4556a4497
x86_64
squid-3.1.10-29.el6.x86_64.rpm	SHA-256: 63bd600bf68a804e9b7a3349f33091359fb379b3d8abe2a479ffa80afcebf4ec
squid-debuginfo-3.1.10-29.el6.x86_64.rpm	SHA-256: 3a3cf5cb66e964518a69877a24f4d8e8d3ad20f669885004fe32eec60a025277
i386
squid-3.1.10-29.el6.i686.rpm	SHA-256: 327721b8a835cc270ff7ed0f811da51461f4426823d903c2fb657a1797361005
squid-debuginfo-3.1.10-29.el6.i686.rpm	SHA-256: f289bb89615af38106b657efe84d0e4c962ca4ef8abd314b4a97ce1e57dfb417

Red Hat Enterprise Linux for IBM z Systems 6

SRPM
squid-3.1.10-29.el6.src.rpm	SHA-256: f5a18e5aa33bcd8f046c8160a24c9e3be04edc090fc51adc5875eec4556a4497
s390x
squid-3.1.10-29.el6.s390x.rpm	SHA-256: 4d42c9232c08c4177929ebf093517c13d0c890f5880b02f7163dc459f4137f17
squid-debuginfo-3.1.10-29.el6.s390x.rpm	SHA-256: dc809e21e2d428778efc28b0262aae384fc26b05ef8f66d595ddecfbbd97b078

Red Hat Enterprise Linux for Power, big endian 6

SRPM
squid-3.1.10-29.el6.src.rpm	SHA-256: f5a18e5aa33bcd8f046c8160a24c9e3be04edc090fc51adc5875eec4556a4497
ppc64
squid-3.1.10-29.el6.ppc64.rpm	SHA-256: cea34dfef11bb49ff95e8eb9cb734c136e2c6cf68341c7539fc11b9b806b7332
squid-debuginfo-3.1.10-29.el6.ppc64.rpm	SHA-256: f73cf11a67befdcb7d520aa78a7bc3f12bc51ab5c0db9daa4b7dc12560845458

Red Hat Enterprise Linux Server from RHUI 6

SRPM
squid-3.1.10-29.el6.src.rpm	SHA-256: f5a18e5aa33bcd8f046c8160a24c9e3be04edc090fc51adc5875eec4556a4497
x86_64
squid-3.1.10-29.el6.x86_64.rpm	SHA-256: 63bd600bf68a804e9b7a3349f33091359fb379b3d8abe2a479ffa80afcebf4ec
squid-debuginfo-3.1.10-29.el6.x86_64.rpm	SHA-256: 3a3cf5cb66e964518a69877a24f4d8e8d3ad20f669885004fe32eec60a025277
i386
squid-3.1.10-29.el6.i686.rpm	SHA-256: 327721b8a835cc270ff7ed0f811da51461f4426823d903c2fb657a1797361005
squid-debuginfo-3.1.10-29.el6.i686.rpm	SHA-256: f289bb89615af38106b657efe84d0e4c962ca4ef8abd314b4a97ce1e57dfb417