Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Fedora Local Security Checks >> Fedora Core 3 2005-276: squid

Vulnerability Assessment Details

Fedora Core 3 2005-276: squid
Vulnerability Assessment Summary
Check for the version of the squid package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory FEDORA-2005-276 (squid).

Squid is a high-performance proxy caching server for Web clients,
supporting FTP, gopher, and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests.

Squid consists of a main server program squid, a Domain Name System
lookup program (dnsserver), a program for retrieving FTP data
(ftpget), and some management and client tools.

Note that squid-2.5.STABLE7 and later do not use /etc/squid/errors for
error messages. If you do not want to use the default English error
messages, you must set the error_directory in your
/etc/squid/squid.conf to the appropriate subdirectory of
/usr/share/squid/errors

* Wed Mar 23 2005 Jay Fenlason 7:2.5.STABLE9-1.FC3.4

- Add more upstream patches.
- add the -libbind patch, to avoid picking up a new dependency on libbind.
- Remove references to /etc/squid/errors from this spec, since squid
now uses {_datadir}/squid/errors/English/ by default (overridable in
/etc/squid/squid.conf, as always)
- mark {_datadir}/squid/errors as config(noreplace) so custom error messages
won't get stomped on.

* Wed Mar 16 2005 Jay Fenlason 7:2.5.STABLE9-1.FC3.3

- Actually apply the -date patch.

* Wed Mar 16 2005 Jay Fenlason 7:2.5.STABLE9-1.FC3.2

- New upstream version, with 14 patches. Includes fix for
bz#150234 cookie leak in squid




Solution : Get the newest Fedora Updates
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security
Cables, Connectors


For Lenovo IdeaPad 3 15IIL05 15IML05 15ADA05 15ARE05 Palmrest Keyboard Touchpad picture

For Lenovo IdeaPad 3 15IIL05 15IML05 15ADA05 15ARE05 Palmrest Keyboard Touchpad

$59.25


NEW Palmrest Keyboard For Lenovo Thinkpad E15 Gen 2 20T8 20T9 Black 5M10W64513 picture

NEW Palmrest Keyboard For Lenovo Thinkpad E15 Gen 2 20T8 20T9 Black 5M10W64513

$80.99


For Lenovo Yoga 910-13IKB USB C Charging Port Board with Cable NS-A901 US picture

For Lenovo Yoga 910-13IKB USB C Charging Port Board with Cable NS-A901 US

$138.04


Lenovo ThinkPad T480 14

Lenovo ThinkPad T480 14" Touchscreen Laptop i5 256GB NVMe 16GB RAM Win 11 Pro

$249.00


Lenovo - LOQ 15.6

Lenovo - LOQ 15.6" Gaming Laptop FHD - Intel Core i5-13420H with 8GB Memory -...

$629.99


Lenovo 100e Chromebook Laptop 2nd Gen | 11.6

Lenovo 100e Chromebook Laptop 2nd Gen | 11.6" HD | MTK 1.7GHz | 4GB RAM | 32GB

$32.00


Lenovo Ideapad 1i 15.6

Lenovo Ideapad 1i 15.6" FHD Notebook Intel Core i5-1235U 8GB RAM 256GB SSD

$349.99


Lenovo ThinkPad Yoga 11e 11.6

Lenovo ThinkPad Yoga 11e 11.6" 2in1 Touch Intel Core i3 4GB RAM 128GB SSD Win10

$59.00


Notebook Lenovo Slim Pro 9 Laptop, 16

Notebook Lenovo Slim Pro 9 Laptop, 16" Glass, i9-13905H, GB, 1TB SSD

$1051.99


Lenovo ThinkPad 14

Lenovo ThinkPad 14" Laptop Computer Core i7 16GB RAM 256GB SSD Windows 10 Pro

$229.99


Discussions

No Discussions have been posted on this vulnerability.