RedHat: Moderate: squid security update

An updated squid package that fixes a denial of service issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by th...

Summary

Squid is a full-featured Web proxy cache. A bug was found in the way Squid handles fully qualified domain name (FQDN) lookups. A malicious DNS server could crash Squid by sending a carefully crafted DNS response to an FQDN lookup. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0446 to this issue. This erratum also includes two minor patches to the LDAP helpers. One corrects a slight malformation in ldap search requests (although all known LDAP servers accept the requests). The other adds documentation for the -v option to the ldap helpers. Users of Squid should upgrade to this updated package, which contains a backported patch, and is not vulnerable to this issue.

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
5. Bug IDs fixed (http://bugzilla.redhat.com/):
148882 - CAN-2005-0446 Squid DoS from bad DNS response
6. RPMs required:
Red Hat Enterprise Linux AS version 4:
SRPMS: 211b70fedb9069adb1eec627a4f8e707 squid-2.5.STABLE6-3.4E.5.src.rpm
i386: c67133061261fcf5c3cac5345c7222fa squid-2.5.STABLE6-3.4E.5.i386.rpm
ia64: 99d6fd73bb7d277fc679cc00d9b19e7d squid-2.5.STABLE6-3.4E.5.ia64.rpm
ppc: 4c144b5a2171d36b1e6b5992f4912775 squid-2.5.STABLE6-3.4E.5.ppc.rpm
s390: 22e53afff8b89dda33a0e208f2eb38cf squid-2.5.STABLE6-3.4E.5.s390.rpm
s390x: 00f6e8d80524790bc43ad89bf080cf86 squid-2.5.STABLE6-3.4E.5.s390x.rpm
x86_64: 644f7b720340cfc60f5f62fddc595560 squid-2.5.STABLE6-3.4E.5.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS: 211b70fedb9069adb1eec627a4f8e707 squid-2.5.STABLE6-3.4E.5.src.rpm
i386: c67133061261fcf5c3cac5345c7222fa squid-2.5.STABLE6-3.4E.5.i386.rpm
x86_64: 644f7b720340cfc60f5f62fddc595560 squid-2.5.STABLE6-3.4E.5.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS: 211b70fedb9069adb1eec627a4f8e707 squid-2.5.STABLE6-3.4E.5.src.rpm
i386: c67133061261fcf5c3cac5345c7222fa squid-2.5.STABLE6-3.4E.5.i386.rpm
ia64: 99d6fd73bb7d277fc679cc00d9b19e7d squid-2.5.STABLE6-3.4E.5.ia64.rpm
x86_64: 644f7b720340cfc60f5f62fddc595560 squid-2.5.STABLE6-3.4E.5.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS: 211b70fedb9069adb1eec627a4f8e707 squid-2.5.STABLE6-3.4E.5.src.rpm
i386: c67133061261fcf5c3cac5345c7222fa squid-2.5.STABLE6-3.4E.5.i386.rpm
ia64: 99d6fd73bb7d277fc679cc00d9b19e7d squid-2.5.STABLE6-3.4E.5.ia64.rpm
x86_64: 644f7b720340cfc60f5f62fddc595560 squid-2.5.STABLE6-3.4E.5.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

References

http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE8-dns_assert http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0446

Package List

Severity

Advisory ID: RHSA-2005:201-01

Advisory URL: https://access.redhat.com/errata/RHSA-2005:201.html

Issued Date: : 2005-03-16

Updated on: 2005-03-16

Product: Red Hat Enterprise Linux

CVE Names: CAN-2005-0446 An updated squid package that fixes a denial of service issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team.