[ol8_appstream] squid-7:4.15-7.module+el8.9.0+90184+ff65e696.10.aarch64

Name:	squid
Epoch:	7
Version:	4.15
Release:	7.module+el8.9.0+90184+ff65e696.10
Architecture:	aarch64
Module:	squid:4:8090020240314114525:a75119d5
Group:	Unspecified
Size:	13026106
License:	GPLv2+ and (LGPLv2+ and MIT and BSD and Public Domain)
RPM:	squid-4.15-7.module+el8.9.0+90184+ff65e696.10.aarch64.rpm
Source RPM:	squid-4.15-7.module+el8.9.0+90184+ff65e696.10.src.rpm
Build Date:	Thu Mar 21 2024
Build Host:	build-ol8-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.squid-cache.org
Summary:	The Squid proxy caching server
Description:	Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools.

Changelog (Show File list) (Show related packages)

Thu Mar 14 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-7.10

- Resolves: RHEL-19551 - squid:4/squid: denial of service in HTTP request
  parsing (CVE-2023-50269)

Fri Mar 08 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-7.9

- Resolves: RHEL-28611 - squid:4/squid: Denial of Service in HTTP Chunked
  Decoding (CVE-2024-25111)

Mon Feb 26 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-7.6

- Resolves: RHEL-26087 - squid:4/squid: denial of service in HTTP header
  parser (CVE-2024-25617)

Thu Dec 07 2023 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-7.5

- Resolves: RHEL-18483 - squid:4/squid: Buffer over-read in the HTTP Message
  processing feature (CVE-2023-49285)
- Resolves: RHEL-18485 - squid:4/squid: Incorrect Check of Function Return
  Value In Helper Process management (CVE-2023-49286)

Wed Dec 06 2023 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-7.4

- Resolves: RHEL-16764 - squid:4/squid: Denial of Service in SSL Certificate
  validation (CVE-2023-46724)
- Resolves: RHEL-16775 - squid:4/squid: NULL pointer dereference in the gopher
  protocol code (CVE-2023-46728)
- Resolves: RHEL-18257 - squid crashes in assertion when a parent peer exists

Thu Nov 30 2023 Tomas Korbar <tkorbar@redhat.com> - 7:4.15-7.3

- Related: RHEL-14792 - squid: squid multiple issues in HTTP response caching
- Fix mistake in the patch

Tue Nov 21 2023 Tomas Korbar <tkorbar@redhat.com> - 7:4.15-7.2

- Resolves: RHEL-14792 - squid: squid multiple issues in HTTP response caching

Mon Oct 30 2023 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-7.1

- Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest
  Authentication
- Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1
  and ICAP

Wed Aug 16 2023 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-7
```
- Resolves: #2076717 - Crash with half_closed_client on
```

Thu Dec 08 2022 Tomas Korbar <tkorbar@redhat.com> - 4.15-6

- Resolves: #2072988 - [RFE] Add the "IP_BIND_ADDRESS_NO_PORT"
  flag to sockets created for outgoing connections in the squid source code.