squid 5.7-0ubuntu0.22.04.4 source package in Ubuntu
Changelog
squid (5.7-0ubuntu0.22.04.4) jammy-security; urgency=medium
* SECURITY UPDATE: DoS via Cache Manager error responses
- debian/patches/CVE-2024-23638.patch: just close after a write(2)
response sending error in src/servers/Server.cc.
- CVE-2024-23638
* SECURITY UPDATE: DoS in HTTP header parsing
- debian/patches/CVE-2024-25617.patch: improve handling of expanding
HTTP header values in src/SquidString.h, src/cache_cf.cc,
src/cf.data.pre, src/http.cc.
- CVE-2024-25617
* SECURITY UPDATE: DoS via chunked decoder uncontrolled recursion bug
- debian/patches/CVE-2024-25111.patch: fix infinite recursion in
src/SquidMath.h, src/http.cc, src/http.h.
- CVE-2024-25111
* SECURITY UPDATE: DoS via Improper Handling of Structural Elements bug
- debian/patches/CVE-2023-5824-pre1.patch: break long store_client call
chains with async calls.
- debian/patches/CVE-2023-5824-pre2.patch: add Assure() as a
replacement for problematic Must().
- debian/patches/CVE-2023-5824-pre3.patch: fix compiler errors.
- debian/patches/CVE-2023-5824-1.patch: remove serialized HTTP headers
from storeClientCopy().
- debian/patches/CVE-2023-5824-2.patch: fix frequent assertion.
- debian/patches/CVE-2023-5824-3.patch: remove mem_hdr::freeDataUpto()
assertion.
- debian/patches/CVE-2023-5824-4.patch: fix Bug 5318.
- CVE-2023-5824
-- Marc Deslauriers <email address hidden> Thu, 14 Mar 2024 10:47:38 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Jammy
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| squid_5.7.orig.tar.xz | 2.4 MiB | 6b0753aaba4c9c4efd333e67124caecf7ad6cc2d38581f19d2f0321f5b7ecd81 |
| squid_5.7-0ubuntu0.22.04.4.debian.tar.xz | 101.2 KiB | 9832909171de473009b4dc3bdfd392c0f85035a1317e9b800ca1e459007ff02f |
| squid_5.7-0ubuntu0.22.04.4.dsc | 2.8 KiB | 1a3aa86a46d46c29e9ef34cae6587b7dab6791a79de518262a4b248e8e9974ee |
Available diffs
Binary packages built by this source
- squid: Full featured Web Proxy cache (HTTP proxy GnuTLS flavour)
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
- squid-cgi: Full featured Web Proxy cache (HTTP proxy) - control CGI
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains a CGI program that can be used to query and administrate
a `squid' proxy cache through a web browser.
- squid-cgi-dbgsym: debug symbols for squid-cgi
- squid-common: Full featured Web Proxy cache (HTTP proxy) - common files
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains common files (MIB and icons)
- squid-dbgsym: debug symbols for squid
- squid-openssl: Full featured Web Proxy cache (HTTP proxy OpenSSL flavour)
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
- squid-openssl-dbgsym: debug symbols for squid-openssl
- squid-purge: Full featured Web Proxy cache (HTTP proxy) - cache management utility
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains a small utility that can be used to manage the disk cache
from the command line.
- squid-purge-dbgsym: debug symbols for squid-purge
- squidclient: Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message utility
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains a small utility that can be used to get URLs from the
command line.
- squidclient-dbgsym: debug symbols for squidclient
