rhsa-2015_2378
Vulnerability from csaf_redhat
Published
2015-11-19 05:51
Modified
2024-11-05 19:06
Summary
Red Hat Security Advisory: squid security and bug fix update
Notes
Topic
Updated squid packages that fix one security issue and two bugs are now
available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having Moderate security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.
Details
Squid is a high-performance proxy caching server for web clients,
supporting FTP, Gopher, and HTTP data objects.
It was found that Squid configured with client-first SSL-bump did not
correctly validate X.509 server certificate host name fields. A
man-in-the-middle attacker could use this flaw to spoof a Squid server
using a specially crafted X.509 certificate. (CVE-2015-3455)
This update fixes the following bugs:
* Previously, the squid process did not handle file descriptors correctly
when receiving Simple Network Management Protocol (SNMP) requests. As a
consequence, the process gradually accumulated open file descriptors. This
bug has been fixed and squid now handles SNMP requests correctly, closing
file descriptors when necessary. (BZ#1198778)
* Under high system load, the squid process sometimes terminated
unexpectedly with a segmentation fault during reboot. This update provides
better memory handling during reboot, thus fixing this bug. (BZ#1225640)
Users of squid are advised to upgrade to these updated packages, which fix
these bugs. After installing this update, the squid service will be
restarted automatically.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated squid packages that fix one security issue and two bugs are now\navailable for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.", "title": "Topic" }, { "category": "general", "text": "Squid is a high-performance proxy caching server for web clients,\nsupporting FTP, Gopher, and HTTP data objects.\n\nIt was found that Squid configured with client-first SSL-bump did not\ncorrectly validate X.509 server certificate host name fields. A\nman-in-the-middle attacker could use this flaw to spoof a Squid server\nusing a specially crafted X.509 certificate. (CVE-2015-3455)\n\nThis update fixes the following bugs:\n\n* Previously, the squid process did not handle file descriptors correctly\nwhen receiving Simple Network Management Protocol (SNMP) requests. As a\nconsequence, the process gradually accumulated open file descriptors. This\nbug has been fixed and squid now handles SNMP requests correctly, closing\nfile descriptors when necessary. (BZ#1198778)\n\n* Under high system load, the squid process sometimes terminated\nunexpectedly with a segmentation fault during reboot. This update provides\nbetter memory handling during reboot, thus fixing this bug. (BZ#1225640)\n\nUsers of squid are advised to upgrade to these updated packages, which fix\nthese bugs. After installing this update, the squid service will be\nrestarted automatically.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:2378", "url": "https://access.redhat.com/errata/RHSA-2015:2378" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "1102842", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1102842" }, { "category": "external", "summary": "1161600", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1161600" }, { "category": "external", "summary": "1198778", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1198778" }, { "category": "external", "summary": "1204375", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1204375" }, { "category": "external", "summary": "1218118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1218118" }, { "category": "external", "summary": "1263338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1263338" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_2378.json" } ], "title": "Red Hat Security Advisory: squid security and bug fix update", "tracking": { "current_release_date": "2024-11-05T19:06:15+00:00", "generator": { "date": "2024-11-05T19:06:15+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2015:2378", "initial_release_date": "2015-11-19T05:51:27+00:00", "revision_history": [ { "date": "2015-11-19T05:51:27+00:00", "number": "1", "summary": "Initial version" }, { "date": "2015-11-19T05:51:27+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T19:06:15+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "squid-7:3.3.8-26.el7.s390x", "product": { "name": "squid-7:3.3.8-26.el7.s390x", "product_id": "squid-7:3.3.8-26.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=s390x\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-debuginfo-7:3.3.8-26.el7.s390x", "product": { "name": "squid-debuginfo-7:3.3.8-26.el7.s390x", "product_id": "squid-debuginfo-7:3.3.8-26.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=s390x\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-sysvinit-7:3.3.8-26.el7.s390x", "product": { "name": "squid-sysvinit-7:3.3.8-26.el7.s390x", "product_id": "squid-sysvinit-7:3.3.8-26.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=s390x\u0026epoch=7" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64", "product": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64", "product_id": "squid-debuginfo-7:3.3.8-26.el7.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=ppc64\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-7:3.3.8-26.el7.ppc64", "product": { "name": "squid-7:3.3.8-26.el7.ppc64", "product_id": "squid-7:3.3.8-26.el7.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=ppc64\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64", "product": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64", "product_id": "squid-sysvinit-7:3.3.8-26.el7.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=ppc64\u0026epoch=7" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "squid-7:3.3.8-26.el7.ppc64le", "product": { "name": "squid-7:3.3.8-26.el7.ppc64le", "product_id": "squid-7:3.3.8-26.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=ppc64le\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le", "product": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le", "product_id": "squid-debuginfo-7:3.3.8-26.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=ppc64le\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le", "product": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le", "product_id": "squid-sysvinit-7:3.3.8-26.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=ppc64le\u0026epoch=7" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64", "product": { "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64", "product_id": "squid-debuginfo-7:3.3.8-26.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=x86_64\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-7:3.3.8-26.el7.x86_64", "product": { "name": "squid-7:3.3.8-26.el7.x86_64", "product_id": "squid-7:3.3.8-26.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=x86_64\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64", "product": { "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64", "product_id": "squid-sysvinit-7:3.3.8-26.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=x86_64\u0026epoch=7" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "squid-7:3.3.8-26.el7.src", "product": { "name": "squid-7:3.3.8-26.el7.src", "product_id": "squid-7:3.3.8-26.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=src\u0026epoch=7" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "squid-7:3.3.8-26.el7.aarch64", "product": { "name": "squid-7:3.3.8-26.el7.aarch64", "product_id": "squid-7:3.3.8-26.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=aarch64\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64", "product": { "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64", "product_id": "squid-debuginfo-7:3.3.8-26.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=aarch64\u0026epoch=7" } } }, { "category": "product_version", "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64", "product": { "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64", "product_id": "squid-sysvinit-7:3.3.8-26.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=aarch64\u0026epoch=7" } } } ], "category": "architecture", "name": "aarch64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-7:3.3.8-26.el7.src" }, "product_reference": "squid-7:3.3.8-26.el7.src", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Server-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-7:3.3.8-26.el7.src" }, "product_reference": "squid-7:3.3.8-26.el7.src", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-sysvinit-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-sysvinit-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server:squid-sysvinit-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Server" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-7:3.3.8-26.el7.src" }, "product_reference": "squid-7:3.3.8-26.el7.src", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Workstation-optional" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-7:3.3.8-26.el7.src" }, "product_reference": "squid-7:3.3.8-26.el7.src", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-debuginfo-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-debuginfo-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-sysvinit-7:3.3.8-26.el7.aarch64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.aarch64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64le" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64le", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-sysvinit-7:3.3.8-26.el7.s390x" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.s390x", "relates_to_product_reference": "7Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation:squid-sysvinit-7:3.3.8-26.el7.x86_64" }, "product_reference": "squid-sysvinit-7:3.3.8-26.el7.x86_64", "relates_to_product_reference": "7Workstation" } ] }, "vulnerabilities": [ { "cve": "CVE-2015-3455", "cwe": { "id": "CWE-297", "name": "Improper Validation of Certificate with Host Mismatch" }, "discovery_date": "2015-05-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1218118" } ], "notes": [ { "category": "description", "text": "It was found that Squid configured with client-first SSL-bump did not correctly validate X.509 server certificate host name fields. A man-in-the-middle attacker could use this flaw to spoof a Squid server using a specially crafted X.509 certificate.", "title": "Vulnerability description" }, { "category": "summary", "text": "squid: incorrect X509 server certificate validation (SQUID-2015:1)", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of squid as shipped with Red Hat Enterprise Linux 5 and 6.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-optional:squid-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-7:3.3.8-26.el7.s390x", "7Server-optional:squid-7:3.3.8-26.el7.src", "7Server-optional:squid-7:3.3.8-26.el7.x86_64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Server:squid-7:3.3.8-26.el7.aarch64", "7Server:squid-7:3.3.8-26.el7.ppc64", "7Server:squid-7:3.3.8-26.el7.ppc64le", "7Server:squid-7:3.3.8-26.el7.s390x", "7Server:squid-7:3.3.8-26.el7.src", "7Server:squid-7:3.3.8-26.el7.x86_64", "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Server:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Server:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Server:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-7:3.3.8-26.el7.src", "7Workstation-optional:squid-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Workstation:squid-7:3.3.8-26.el7.aarch64", "7Workstation:squid-7:3.3.8-26.el7.ppc64", "7Workstation:squid-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-7:3.3.8-26.el7.s390x", "7Workstation:squid-7:3.3.8-26.el7.src", "7Workstation:squid-7:3.3.8-26.el7.x86_64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-3455" }, { "category": "external", "summary": "RHBZ#1218118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1218118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-3455", "url": "https://www.cve.org/CVERecord?id=CVE-2015-3455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-3455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3455" }, { "category": "external", "summary": "http://www.squid-cache.org/Advisories/SQUID-2015_1.txt", "url": "http://www.squid-cache.org/Advisories/SQUID-2015_1.txt" } ], "release_date": "2015-05-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-11-19T05:51:27+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-optional:squid-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-7:3.3.8-26.el7.s390x", "7Server-optional:squid-7:3.3.8-26.el7.src", "7Server-optional:squid-7:3.3.8-26.el7.x86_64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Server:squid-7:3.3.8-26.el7.aarch64", "7Server:squid-7:3.3.8-26.el7.ppc64", "7Server:squid-7:3.3.8-26.el7.ppc64le", "7Server:squid-7:3.3.8-26.el7.s390x", "7Server:squid-7:3.3.8-26.el7.src", "7Server:squid-7:3.3.8-26.el7.x86_64", "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Server:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Server:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Server:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-7:3.3.8-26.el7.src", "7Workstation-optional:squid-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Workstation:squid-7:3.3.8-26.el7.aarch64", "7Workstation:squid-7:3.3.8-26.el7.ppc64", "7Workstation:squid-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-7:3.3.8-26.el7.s390x", "7Workstation:squid-7:3.3.8-26.el7.src", "7Workstation:squid-7:3.3.8-26.el7.x86_64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:2378" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "7Server-optional:squid-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-7:3.3.8-26.el7.s390x", "7Server-optional:squid-7:3.3.8-26.el7.src", "7Server-optional:squid-7:3.3.8-26.el7.x86_64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Server:squid-7:3.3.8-26.el7.aarch64", "7Server:squid-7:3.3.8-26.el7.ppc64", "7Server:squid-7:3.3.8-26.el7.ppc64le", "7Server:squid-7:3.3.8-26.el7.s390x", "7Server:squid-7:3.3.8-26.el7.src", "7Server:squid-7:3.3.8-26.el7.x86_64", "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Server:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Server:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Server:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Server:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-7:3.3.8-26.el7.src", "7Workstation-optional:squid-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64", "7Workstation:squid-7:3.3.8-26.el7.aarch64", "7Workstation:squid-7:3.3.8-26.el7.ppc64", "7Workstation:squid-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-7:3.3.8-26.el7.s390x", "7Workstation:squid-7:3.3.8-26.el7.src", "7Workstation:squid-7:3.3.8-26.el7.x86_64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.aarch64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.s390x", "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.aarch64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.ppc64le", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.s390x", "7Workstation:squid-sysvinit-7:3.3.8-26.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "squid: incorrect X509 server certificate validation (SQUID-2015:1)" } ] }
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.