Overview

File _patchinfo of Package patchinfo.31656

<patchinfo incident="31656">
  <issue tracker="bnc" id="1217654">VUL-0: squid, squid3: X-Forwarded-For Stack Overflow</issue>
  <issue tracker="bnc" id="1217815">VUL-0: CVE-2023-49286: squid: Squid is vulnerable to a Denial of Service attack against its Helper process management.</issue>
  <issue tracker="bnc" id="1217813">VUL-0: CVE-2023-49285: squid: Squid is affected by a buffer overread bug on HTTP Message processing flow</issue>
  <issue tracker="cve" id="2023-49285"/>
  <issue tracker="cve" id="2023-49286"/>
  <packager>adamm</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for squid</summary>
  <description>This update for squid fixes the following issues:

- CVE-2023-49285: Fixed buffer over read bug on HTTP Message processing flow (bsc#1217813)
- CVE-2023-49286: Fixed Denial of Service vulnerability in helper process management (bsc#1217815)
- Fix X-Forwarded-For Stack Overflow (bsc#1217654)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places