- Issued:
- 2024-03-19
- Updated:
- 2024-03-19
RHSA-2024:1375 - Security Advisory
Synopsis
Important: squid:4 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects.
Security Fix(es):
- squid: denial of service in HTTP header parser (CVE-2024-25617)
- squid: Denial of Service in HTTP Chunked Decoding (CVE-2024-25111)
- squid: denial of service in HTTP request parsing (CVE-2023-50269)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Solution
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
After installing this update, the squid service will be restarted automatically.
Affected Products
- Red Hat Enterprise Linux for x86_64 8 x86_64
- Red Hat Enterprise Linux for IBM z Systems 8 s390x
- Red Hat Enterprise Linux for Power, little endian 8 ppc64le
- Red Hat Enterprise Linux for ARM 64 8 aarch64
Fixes
- BZ - 2254663 - CVE-2023-50269 squid: denial of service in HTTP request parsing
- BZ - 2264309 - CVE-2024-25617 squid: denial of service in HTTP header parser
- BZ - 2268366 - CVE-2024-25111 squid: Denial of Service in HTTP Chunked Decoding
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux for x86_64 8
| SRPM | |
|---|---|
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.src.rpm | SHA-256: 68456b844f86281a4db4053345c0704bea4293018ca2cd394f979ba8cd263cb4 |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.src.rpm | SHA-256: 4667b02d2dfa30c5d464bb90597445356b4651e30b67803acd3129abb342c6d5 |
| x86_64 | |
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64.rpm | SHA-256: 40d43cf013f21f97631fb8470285164a523071f7882f748663494c0f1625b427 |
| libecap-debuginfo-1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64.rpm | SHA-256: 6e683c898b1c714b9485a0acb012d0e5b71ddb75514cf6a37ee472ad6c373bd9 |
| libecap-debugsource-1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64.rpm | SHA-256: f9d480af68e77827a9e84e1cdc2b9d48fefda63dceec87b54114568520ba6ca7 |
| libecap-devel-1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64.rpm | SHA-256: 11b5623fb94967adf20000120212bb87d5e0485c1a4d17ccaeea54bf45abeaca |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.x86_64.rpm | SHA-256: 23a1ec3f83c6a94ec560e02bebec32c874ca2b1f678b7ca9a430f59c0dfcb228 |
| squid-debuginfo-4.15-7.module+el8.9.0+21530+59b09a5b.10.x86_64.rpm | SHA-256: bb2e07933ef4aa76a29beb21af117f95a09acca4a11768374f6a2ae37bcd38c7 |
| squid-debugsource-4.15-7.module+el8.9.0+21530+59b09a5b.10.x86_64.rpm | SHA-256: a7f67c553a87fcdd19e60ceff0f922c2f20c962973cb548b83bf707c66f4273a |
Red Hat Enterprise Linux for IBM z Systems 8
| SRPM | |
|---|---|
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.src.rpm | SHA-256: 68456b844f86281a4db4053345c0704bea4293018ca2cd394f979ba8cd263cb4 |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.src.rpm | SHA-256: 4667b02d2dfa30c5d464bb90597445356b4651e30b67803acd3129abb342c6d5 |
| s390x | |
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.s390x.rpm | SHA-256: 7b177d330230a2a8637f1f46c83e52796fc981f307861cd5ac4e4ff46759a6a3 |
| libecap-debuginfo-1.0.1-2.module+el8.9.0+19703+a1da7223.s390x.rpm | SHA-256: cdaadf99ef98a02d12f5047e680e5f40c71f7a2df68e2808343242f0a37bf76d |
| libecap-debugsource-1.0.1-2.module+el8.9.0+19703+a1da7223.s390x.rpm | SHA-256: 24efacc784d597f773c9856ed0ed99d78f9c0b9ece1b84de60cef147298e9c01 |
| libecap-devel-1.0.1-2.module+el8.9.0+19703+a1da7223.s390x.rpm | SHA-256: e7d1d34aaeb21d0dbcb11af624315ecd47b7d7b644edd52ea09f0f0614bb6f54 |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.s390x.rpm | SHA-256: 20fb749d52d76f601f8c6a73e46845128cac6d6a66ad8d79b0d5b623a8528750 |
| squid-debuginfo-4.15-7.module+el8.9.0+21530+59b09a5b.10.s390x.rpm | SHA-256: a8a1b5127898e5dc461689e10497412291d9239adf974a7f7c30fec2c541d227 |
| squid-debugsource-4.15-7.module+el8.9.0+21530+59b09a5b.10.s390x.rpm | SHA-256: d48d5803f457a35cb00d4d62384bc993170f99231eb6fb56111c5b76268db399 |
Red Hat Enterprise Linux for Power, little endian 8
| SRPM | |
|---|---|
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.src.rpm | SHA-256: 68456b844f86281a4db4053345c0704bea4293018ca2cd394f979ba8cd263cb4 |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.src.rpm | SHA-256: 4667b02d2dfa30c5d464bb90597445356b4651e30b67803acd3129abb342c6d5 |
| ppc64le | |
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le.rpm | SHA-256: 779f161dd569dae1700e0acfd9169bd55763db01ad3112207fbcd49716bfd58f |
| libecap-debuginfo-1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le.rpm | SHA-256: 6720c36ff829fc1b8004458fb08001f1fd8b3a40bdd57e418543a3b890421129 |
| libecap-debugsource-1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le.rpm | SHA-256: 8120cedcc13b839d73ed203a89ebbfe1803579e0549be7ae5adab0976f1fe0de |
| libecap-devel-1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le.rpm | SHA-256: fe6d7e62eb8f5eb30ccd717c5c46cc9c1f6388b158515d25149d259bf30e7737 |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.ppc64le.rpm | SHA-256: 03d7f77764ed0e9f97c7a32334810bb47e613a148b9ddf4186d9cab6dc9d80a7 |
| squid-debuginfo-4.15-7.module+el8.9.0+21530+59b09a5b.10.ppc64le.rpm | SHA-256: f74e3a21965fc0f0ada5909d8778f094c81cba4ee466d2cd997c75cf489529c4 |
| squid-debugsource-4.15-7.module+el8.9.0+21530+59b09a5b.10.ppc64le.rpm | SHA-256: 840ba71ae23728394d6d69116c9949c6cd980458b76024bce1064334c71abc85 |
Red Hat Enterprise Linux for ARM 64 8
| SRPM | |
|---|---|
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.src.rpm | SHA-256: 68456b844f86281a4db4053345c0704bea4293018ca2cd394f979ba8cd263cb4 |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.src.rpm | SHA-256: 4667b02d2dfa30c5d464bb90597445356b4651e30b67803acd3129abb342c6d5 |
| aarch64 | |
| libecap-1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64.rpm | SHA-256: 32b30079509b8d16ed9e85fb0ed15c0e2a8efae115f9fd5622219b65d2363db8 |
| libecap-debuginfo-1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64.rpm | SHA-256: 72b65db7b4a0220a8185e142c1fc8e2c56480b05028a924138ea24d1ce90b3dd |
| libecap-debugsource-1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64.rpm | SHA-256: d408408456d44c98da25fb4dc3dbd7de545b3ffa6de8527bd7598a366a7012a3 |
| libecap-devel-1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64.rpm | SHA-256: 0b78af9f6df4a8580f41145718d3f5b0d52bf566bdc6fed26b2ed8c8140f42bc |
| squid-4.15-7.module+el8.9.0+21530+59b09a5b.10.aarch64.rpm | SHA-256: 00e71776723fd4a697cc05bf50259f7c3db1054e1ca68f5cd57095f9d5f706e2 |
| squid-debuginfo-4.15-7.module+el8.9.0+21530+59b09a5b.10.aarch64.rpm | SHA-256: b52462c6076f61b9f0dec2cf517f8628821befb5e558b6039cf6a25c2afeea8f |
| squid-debugsource-4.15-7.module+el8.9.0+21530+59b09a5b.10.aarch64.rpm | SHA-256: e3cf943374e8b107b4418fb88bff19a8a83ae6cfbbd7f923b19f841a376e9b15 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
