Oval Definition:	oval:org.opensuse.security:def:66120
Revision Date: 2020-12-01 Version: 1 Title: Security update for squid (Important) Description: This update for squid to version 4.9 fixes the following issues: Security issues fixed: - CVE-2019-13345: Fixed multiple cross-site scripting vulnerabilities in cachemgr.cgi (bsc#1140738). - CVE-2019-12526: Fixed potential remote code execution during URN processing (bsc#1156326). - CVE-2019-12523,CVE-2019-18676: Fixed multiple improper validations in URI processing (bsc#1156329). - CVE-2019-18677: Fixed Cross-Site Request Forgery in HTTP Request processing (bsc#1156328). - CVE-2019-18678: Fixed incorrect message parsing which could have led to HTTP request splitting issue (bsc#1156323). - CVE-2019-18679: Fixed information disclosure when processing HTTP Digest Authentication (bsc#1156324). Other issues addressed: * Fixed DNS failures when peer name was configured with any upper case characters * Fixed several rock cache_dir corruption issues Family: unix Class: patch Status: Reference(s): 1133089 1140738 1141329 1141330 1141332 1141442 1156323 1156324 1156326 1156328 1156329 1173786 1177351 1177352 CVE-2019-12523 CVE-2019-12525 CVE-2019-12526 CVE-2019-12527 CVE-2019-12529 CVE-2019-12854 CVE-2019-13345 CVE-2019-18676 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 CVE-2019-3688 CVE-2020-7069 CVE-2020-7070 SUSE-SU-2019:2975-1 SUSE-SU-2020:2997-1 Platform(s): SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND squid-4.9-5.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.67 is installed OR php7-7.2.5-4.67 is installed OR php7-bcmath-7.2.5-4.67 is installed OR php7-bz2-7.2.5-4.67 is installed OR php7-calendar-7.2.5-4.67 is installed OR php7-ctype-7.2.5-4.67 is installed OR php7-curl-7.2.5-4.67 is installed OR php7-dba-7.2.5-4.67 is installed OR php7-devel-7.2.5-4.67 is installed OR php7-dom-7.2.5-4.67 is installed OR php7-enchant-7.2.5-4.67 is installed OR php7-exif-7.2.5-4.67 is installed OR php7-fastcgi-7.2.5-4.67 is installed OR php7-fileinfo-7.2.5-4.67 is installed OR php7-fpm-7.2.5-4.67 is installed OR php7-ftp-7.2.5-4.67 is installed OR php7-gd-7.2.5-4.67 is installed OR php7-gettext-7.2.5-4.67 is installed OR php7-gmp-7.2.5-4.67 is installed OR php7-iconv-7.2.5-4.67 is installed OR php7-intl-7.2.5-4.67 is installed OR php7-json-7.2.5-4.67 is installed OR php7-ldap-7.2.5-4.67 is installed OR php7-mbstring-7.2.5-4.67 is installed OR php7-mysql-7.2.5-4.67 is installed OR php7-odbc-7.2.5-4.67 is installed OR php7-opcache-7.2.5-4.67 is installed OR php7-openssl-7.2.5-4.67 is installed OR php7-pcntl-7.2.5-4.67 is installed OR php7-pdo-7.2.5-4.67 is installed OR php7-pear-7.2.5-4.67 is installed OR php7-pear-Archive_Tar-7.2.5-4.67 is installed OR php7-pgsql-7.2.5-4.67 is installed OR php7-phar-7.2.5-4.67 is installed OR php7-posix-7.2.5-4.67 is installed OR php7-readline-7.2.5-4.67 is installed OR php7-shmop-7.2.5-4.67 is installed OR php7-snmp-7.2.5-4.67 is installed OR php7-soap-7.2.5-4.67 is installed OR php7-sockets-7.2.5-4.67 is installed OR php7-sodium-7.2.5-4.67 is installed OR php7-sqlite-7.2.5-4.67 is installed OR php7-sysvmsg-7.2.5-4.67 is installed OR php7-sysvsem-7.2.5-4.67 is installed OR php7-sysvshm-7.2.5-4.67 is installed OR php7-tidy-7.2.5-4.67 is installed OR php7-tokenizer-7.2.5-4.67 is installed OR php7-wddx-7.2.5-4.67 is installed OR php7-xmlreader-7.2.5-4.67 is installed OR php7-xmlrpc-7.2.5-4.67 is installed OR php7-xmlwriter-7.2.5-4.67 is installed OR php7-xsl-7.2.5-4.67 is installed OR php7-zip-7.2.5-4.67 is installed OR php7-zlib-7.2.5-4.67 is installed
BACK