Mageia 2022-0351: squid security update
Summary
Exposure of Sensitive Information in Cache Manager. (CVE-2022-41317)
Buffer Over Read in SSPI and SMB Authentication. (CVE-2022-41318)
References
- https://bugs.mageia.org/show_bug.cgi?id=30883
- https://github.com/squid-cache/squid/security/advisories/GHSA-rcg9-7fqm-83mq
- https://github.com/squid-cache/squid/security/advisories/GHSA-394c-rr7q-6g78
- https://ubuntu.com/security/notices/USN-5641-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41317
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41318
Resolution
MGASA-2022-0351 - Updated squid packages fix security vulnerability
SRPMS
- 8/core/squid-4.17-1.2.mga8