CLSA-2023-1700161280

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1700161280.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLSA-2023-1700161280

Upstream

CVE-2023-46846

CVE-2023-46847

CVE-2023-46848

Published

2023-11-16T19:01:24Z

Modified

2026-05-27T11:18:29.818416321Z

Summary

squid: Fix of 3 CVEs

Details

CVE-2023-46846: Improve HTTP chunked encoding compliance
CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization
CVE-2023-46848: Fix userinfo percent-encoding

References

https://errata.cloudlinux.com/centos8.5-els/CLSA-2023-1700161280.html

Affected packages

TuxCare:CentOS:8.5 / squid

Package

Name: squid
Purl: pkg:rpm/tuxcare/squid?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7:4.15-1.module_el8.5.0+2143+24c223d9.tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1700161280.json"