Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2022:5542 - Security Advisory
Issued:
2022-07-11
Updated:
2022-07-11

RHSA-2022:5542 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: squid security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for squid is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects.

Security Fix(es):

  • squid: DoS when processing gopher server responses (CVE-2021-46784)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the squid service will be restarted automatically.

Affected Products

  • Red Hat Enterprise Linux Server 7 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
  • Red Hat Enterprise Linux Workstation 7 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 7 s390x
  • Red Hat Enterprise Linux for Power, big endian 7 ppc64
  • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le

Fixes

  • BZ - 2100721 - CVE-2021-46784 squid: DoS when processing gopher server responses

CVEs

  • CVE-2021-46784

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
x86_64
squid-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: 855f23618a2c10aa2e23f7c4cf19bd852ffda86c8e822e89b1d8054f28fe3fc7
squid-debuginfo-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: dc851bcca47473cde7faa66ac0d3ab3109015283f63fb4814a01dd7ac2a4d3cd
squid-debuginfo-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: dc851bcca47473cde7faa66ac0d3ab3109015283f63fb4814a01dd7ac2a4d3cd
squid-migration-script-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: 6edea298c5fbebd1d0d3d07b9c39e6a905df547a5903b444c6d2569126e731ce
squid-sysvinit-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: c4e560a51853a9bc18d217fc9a5f8d720667a8c23ec5282af304bb902d7ce721

Red Hat Enterprise Linux Server - Extended Life Cycle Support 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
x86_64
squid-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: 855f23618a2c10aa2e23f7c4cf19bd852ffda86c8e822e89b1d8054f28fe3fc7
squid-debuginfo-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: dc851bcca47473cde7faa66ac0d3ab3109015283f63fb4814a01dd7ac2a4d3cd
squid-debuginfo-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: dc851bcca47473cde7faa66ac0d3ab3109015283f63fb4814a01dd7ac2a4d3cd
squid-migration-script-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: 6edea298c5fbebd1d0d3d07b9c39e6a905df547a5903b444c6d2569126e731ce
squid-sysvinit-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: c4e560a51853a9bc18d217fc9a5f8d720667a8c23ec5282af304bb902d7ce721

Red Hat Enterprise Linux Workstation 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
x86_64
squid-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: 855f23618a2c10aa2e23f7c4cf19bd852ffda86c8e822e89b1d8054f28fe3fc7
squid-debuginfo-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: dc851bcca47473cde7faa66ac0d3ab3109015283f63fb4814a01dd7ac2a4d3cd
squid-debuginfo-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: dc851bcca47473cde7faa66ac0d3ab3109015283f63fb4814a01dd7ac2a4d3cd
squid-migration-script-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: 6edea298c5fbebd1d0d3d07b9c39e6a905df547a5903b444c6d2569126e731ce
squid-sysvinit-3.5.20-17.el7_9.7.x86_64.rpm SHA-256: c4e560a51853a9bc18d217fc9a5f8d720667a8c23ec5282af304bb902d7ce721

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
s390x
squid-3.5.20-17.el7_9.7.s390x.rpm SHA-256: b77701507145bd3ddc584b2622230a8cc313c3fa87a118733792710a9815ac1f
squid-debuginfo-3.5.20-17.el7_9.7.s390x.rpm SHA-256: 3e08047720c85e041f23e14f87bdd8c758cda3440fd10e3b906f1ec73abc219c
squid-debuginfo-3.5.20-17.el7_9.7.s390x.rpm SHA-256: 3e08047720c85e041f23e14f87bdd8c758cda3440fd10e3b906f1ec73abc219c
squid-migration-script-3.5.20-17.el7_9.7.s390x.rpm SHA-256: e7118a8912d7055369df3c5baa9b21ea7d6e46445841267c455506bc1d1c2b5c
squid-sysvinit-3.5.20-17.el7_9.7.s390x.rpm SHA-256: 3902d008c3abe2fdefad4ddafb8d57ecd2afa06377c4863ffe87ee153d4bd3d7

Red Hat Enterprise Linux for Power, big endian 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
ppc64
squid-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 5c9219cd6e801b0727d9f11492cd2da0f1c23c3a62b1e36b069267489527813d
squid-debuginfo-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 18943017eb83b5ae8fc04fda4593c32f72e15d58efb528e499c3dcec937418f0
squid-debuginfo-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 18943017eb83b5ae8fc04fda4593c32f72e15d58efb528e499c3dcec937418f0
squid-migration-script-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 3d83a07acb5884079ee36597ad8ce5147eb04142506c496f79ce10417f08e28f
squid-sysvinit-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 4267eff360f0d16d1736a54ac57ecca489caf702b87e8b215269405f1fdbb7b1

Red Hat Enterprise Linux for Power, little endian 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
ppc64le
squid-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: 2e5b2d7986ae12de3cbd9dfb9d8692ab23420826b2fb48e6b0976f8f61de3f7a
squid-debuginfo-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: bb4c2163129525573f1dd3343ef5502f7ff1d0add61efb057ceb4ed985fdad06
squid-debuginfo-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: bb4c2163129525573f1dd3343ef5502f7ff1d0add61efb057ceb4ed985fdad06
squid-migration-script-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: 7e311431bfe017c1a2b9ba9dfd3c57ac8eca1d2d1cb6210bdf712f7964f2f428
squid-sysvinit-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: 31c6b4b8a83d0490b9f890ec39e09ab450a4936f919684a98d8950f13f75082b

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
s390x
squid-3.5.20-17.el7_9.7.s390x.rpm SHA-256: b77701507145bd3ddc584b2622230a8cc313c3fa87a118733792710a9815ac1f
squid-debuginfo-3.5.20-17.el7_9.7.s390x.rpm SHA-256: 3e08047720c85e041f23e14f87bdd8c758cda3440fd10e3b906f1ec73abc219c
squid-debuginfo-3.5.20-17.el7_9.7.s390x.rpm SHA-256: 3e08047720c85e041f23e14f87bdd8c758cda3440fd10e3b906f1ec73abc219c
squid-migration-script-3.5.20-17.el7_9.7.s390x.rpm SHA-256: e7118a8912d7055369df3c5baa9b21ea7d6e46445841267c455506bc1d1c2b5c
squid-sysvinit-3.5.20-17.el7_9.7.s390x.rpm SHA-256: 3902d008c3abe2fdefad4ddafb8d57ecd2afa06377c4863ffe87ee153d4bd3d7

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
ppc64
squid-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 5c9219cd6e801b0727d9f11492cd2da0f1c23c3a62b1e36b069267489527813d
squid-debuginfo-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 18943017eb83b5ae8fc04fda4593c32f72e15d58efb528e499c3dcec937418f0
squid-debuginfo-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 18943017eb83b5ae8fc04fda4593c32f72e15d58efb528e499c3dcec937418f0
squid-migration-script-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 3d83a07acb5884079ee36597ad8ce5147eb04142506c496f79ce10417f08e28f
squid-sysvinit-3.5.20-17.el7_9.7.ppc64.rpm SHA-256: 4267eff360f0d16d1736a54ac57ecca489caf702b87e8b215269405f1fdbb7b1

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7

SRPM
squid-3.5.20-17.el7_9.7.src.rpm SHA-256: 3689925978d1a62557c4176c8f60a7a540fbbae48b707ec5502cd334238d22ac
ppc64le
squid-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: 2e5b2d7986ae12de3cbd9dfb9d8692ab23420826b2fb48e6b0976f8f61de3f7a
squid-debuginfo-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: bb4c2163129525573f1dd3343ef5502f7ff1d0add61efb057ceb4ed985fdad06
squid-debuginfo-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: bb4c2163129525573f1dd3343ef5502f7ff1d0add61efb057ceb4ed985fdad06
squid-migration-script-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: 7e311431bfe017c1a2b9ba9dfd3c57ac8eca1d2d1cb6210bdf712f7964f2f428
squid-sysvinit-3.5.20-17.el7_9.7.ppc64le.rpm SHA-256: 31c6b4b8a83d0490b9f890ec39e09ab450a4936f919684a98d8950f13f75082b

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility