Oval Definition:	oval:org.opensuse.security:def:63925
Revision Date: 2020-12-01 Version: 1 Title: Security update for squid (Important) Description: This update for squid fixes the following issues: - CVE-2019-12519, CVE-2019-12521: fixes incorrect buffer handling that can result in cache poisoning, remote execution, and denial of service attacks when processing ESI responses (bsc#1169659). - CVE-2020-11945: fixes a potential remote execution vulnerability when using HTTP Digest Authentication (bsc#1170313). - CVE-2019-12520, CVE-2019-12524: fixes a potential ACL bypass, cache-bypass and cross-site scripting attack when processing invalid HTTP Request messages (bsc#1170423). Family: unix Class: patch Status: Reference(s): 1050241 1133384 1137443 1140120 1141334 1155075 1160968 1165471 1165528 1169511 1169658 1169659 1170313 1170423 1171352 1172277 1174157 1175193 1175194 1175259 1176409 1176412 1178666 1178667 1178668 CVE-2017-7890 CVE-2018-14553 CVE-2019-1010319 CVE-2019-11038 CVE-2019-11498 CVE-2019-12519 CVE-2019-12520 CVE-2019-12521 CVE-2019-12524 CVE-2019-12735 CVE-2019-17639 CVE-2019-2949 CVE-2019-3691 CVE-2020-10018 CVE-2020-11793 CVE-2020-11945 CVE-2020-14349 CVE-2020-14350 CVE-2020-14392 CVE-2020-14393 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 openSUSE-SU-2019:1561-1 openSUSE-SU-2019:2067-1 openSUSE-SU-2019:2670-1 openSUSE-SU-2020:0602-1 openSUSE-SU-2020:1483-1 SUSE-SU-2020:0623-1 SUSE-SU-2020:1227-1 SUSE-SU-2020:1685-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gvim-8.0.1568-lp151.5.3 is installed OR vim-8.0.1568-lp151.5.3 is installed OR vim-data-8.0.1568-lp151.5.3 is installed OR vim-data-common-8.0.1568-lp151.5.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND perl-DBI-1.642-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND squid-3.5.21-26.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-30.72 is installed
BACK