Vulnerability Database
Blog
FAQ
Docs
RHSA-2024:4861
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2024:4861
Import Source
https://security.access.redhat.com/data/osv/RHSA-2024:4861.json
JSON Data
https://api.test.osv.dev/v1/vulns/RHSA-2024:4861
Related
CVE-2024-23638
CVE-2024-37894
Published
2024-09-16T20:34:55Z
Modified
2024-11-24T17:50:51Z
Severity
6.5 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: squid security update
Details
References
https://access.redhat.com/errata/RHSA-2024:4861
https://access.redhat.com/security/updates/classification/#moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2260051
https://bugzilla.redhat.com/show_bug.cgi?id=2294353
https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4861.json
https://access.redhat.com/security/cve/CVE-2024-23638
https://www.cve.org/CVERecord?id=CVE-2024-23638
https://nvd.nist.gov/vuln/detail/CVE-2024-23638
http://www.squid-cache.org/Versions/v5/SQUID-2023_11.patch
http://www.squid-cache.org/Versions/v6/SQUID-2023_11.patch
https://github.com/squid-cache/squid/commit/290ae202883ac28a48867079c2fb34c40efd382b
https://github.com/squid-cache/squid/commit/e8118a7381213f5cfcdeb4cec1d2d854bfd261c8
https://github.com/squid-cache/squid/security/advisories/GHSA-j49p-553x-48rx
https://megamansec.github.io/Squid-Security-Audit/stream-assert.html
https://access.redhat.com/security/cve/CVE-2024-37894
https://www.cve.org/CVERecord?id=CVE-2024-37894
https://nvd.nist.gov/vuln/detail/CVE-2024-37894
https://github.com/squid-cache/squid/security/advisories/GHSA-wgvf-q977-9xjg
https://megamansec.github.io/Squid-Security-Audit/esi-underflow.html
Affected packages
Red Hat:enterprise_linux:9::appstream
/
squid
Package
Name
squid
Purl
pkg:rpm/redhat/squid
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
7:5.5-13.el9_4
Red Hat:enterprise_linux:9::appstream
/
squid-debuginfo
Package
Name
squid-debuginfo
Purl
pkg:rpm/redhat/squid-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
7:5.5-13.el9_4
Red Hat:enterprise_linux:9::appstream
/
squid-debugsource
Package
Name
squid-debugsource
Purl
pkg:rpm/redhat/squid-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
7:5.5-13.el9_4
RHSA-2024:4861 - OSV