Oval Definition:oval:org.opensuse.security:def:69125
Revision Date:2021-06-11Version:1
Title:Security update for squid (Important)
Description:

This update for squid fixes the following issues:

- update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing (bsc#1185918) - CVE-2021-28651: Memory leak in RFC 2169 response parsing (bsc#1185921) - CVE-2021-28662: Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs (bsc#1185919) - CVE-2021-31806: Handle more Range requests (bsc#1185916) - CVE-2020-25097: HTTP Request Smuggling vulnerability (bsc#1183436) - Handle more partial responses (bsc#1185923) - fix previous change to reinstante permissions macros, because the wrong path has been used (bsc#1171569). - use libexecdir instead of libdir to conform to recent changes in Factory (bsc#1171164). - Reinstate permissions macros for pinger binary, because the permissions package is also responsible for setting up the cap_net_raw capability, currently a fresh squid install doesn't get a capability bit at all (bsc#1171569). - Change pinger and basic_pam_auth helper to use standard permissions. pinger uses cap_net_raw=ep instead (bsc#1171569)
Family:unixClass:patch
Status:Reference(s):1046299
1046303
1046305
1050244
1050536
1050545
1051510
1055186
1061840
1064802
1065600
1066129
1073513
1082635
1083647
1086323
1087092
1089644
1090631
1093205
1096254
1097583
1097584
1097585
1097586
1097587
1097588
1098291
1101674
1109158
1111666
1112178
1113994
1114279
1117665
1119461
1119465
1123034
1123080
1133140
1134303
1135642
1135854
1135873
1135967
1137040
1137799
1137861
1138190
1139073
1140090
1140729
1140845
1140883
1141600
1142635
1142667
1143706
1144338
1144375
1144449
1144903
1145099
1146612
1148410
1149119
1149853
1150452
1150457
1150465
1150875
1151508
1151807
1152033
1152624
1152665
1152685
1152696
1152697
1152788
1152790
1152791
1153112
1153158
1153236
1153263
1153476
1153509
1153607
1153646
1153681
1153713
1153717
1153718
1153719
1153811
1153969
1154108
1154189
1154242
1154268
1154354
1154372
1154521
1154578
1154607
1154608
1154610
1154611
1154651
1154737
1154747
1154848
1154858
1154905
1154956
1155061
1155178
1155179
1155184
1155186
1155346
1155671
1157775
1158101
1158809
1171164
1171569
1183436
1185916
1185918
1185919
1185921
1185923
802154
814594
919448
987367
998153
CVE-2018-12207
CVE-2019-10220
CVE-2019-11135
CVE-2019-1551
CVE-2019-16232
CVE-2019-16233
CVE-2019-16234
CVE-2019-16995
CVE-2019-17056
CVE-2019-17133
CVE-2019-17666
CVE-2020-25097
CVE-2021-28651
CVE-2021-28652
CVE-2021-28662
CVE-2021-31806
SUSE-SU-2019:2947-1
SUSE-SU-2020:0069-1
SUSE-SU-2021:1961-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • libopenssl-1_1-devel-32bit-1.1.0i-14.6 is installed
  • OR openssl-1_1-1.1.0i-14.6 is installed
  • OR openssl-1_1-doc-1.1.0i-14.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.26 is installed
  • OR kernel-default-livepatch-4.12.14-197.26 is installed
  • OR kernel-default-livepatch-devel-4.12.14-197.26 is installed
  • OR kernel-livepatch-4_12_14-197_26-default-1-3.5 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_7-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed
  • AND squid-4.15-5.26.1 is installed
    • BACK