Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2014:9138

Overview

Id SUSE-2014:9138
Name Novell SUSE 2014:9138 squid3 security update for SLES 11 SP3 i586
Vendor Name novell
Product Novell
Content Type Critical Critical
Language(s)
Operating System(s) Linux 
Released On 15 Apr 2014 12:00:00

SUSE-2014:9138

Novell SUSE 2014:9138 squid3 security update for SLES 11 SP3 i586

Vendor Name

novell

Product

Novell

Released On

15 Apr 2014 12:00:00

Url

http://www.novell.com/support

Description

LSAC(v2)
A remote DoS attack in the Squid web proxy has been fixed. Due to incorrect state management, Squid was vulnerable to a denial of service attack when processing certain HTTPS requests (CVE-2014-0128). For more information see http://www.squid-cache.org/Advisories/SQUID-2014_1.txt . Additionally, a bug in the logrotate configuration file has been fixed. The 'su' statement was moved into the 'logfile' section (bnc#677335). Security Issue reference: * CVE-2014-0128

Related Resources

Related Vulnerabilities

None

Related Patches

Superseded Patches

None


Last Updated: 27 May 2016 11:18:44