Release Info

Advisory: CLSA-2024:1725012247

OS: Ubuntu 16.04 ELS

Public date: 2024-08-30 06:04:09

Project: squid

Version: 3.5.12-1ubuntu7.17+tuxcare.els9

Errata link: https://errata.cloudlinux.com/ubuntu16-els/CLSA-2024-1725012247.html

Changelog

* SECURITY UPDATE: Memory Corruption via Out-of-bounds Write in ESI variables assignment - debian/patches/CVE-2024-37894.patch: fix incorrect type declaration in TrieNode.cc to prevent potential type conversion issues - CVE-2024-37894

Update

Update command: apt-get update apt-get --only-upgrade install squid*

Packages list

squid_3.5.12-1ubuntu7.17+tuxcare.els9_amd64.deb squid-cgi_3.5.12-1ubuntu7.17+tuxcare.els9_amd64.deb squid-common_3.5.12-1ubuntu7.17+tuxcare.els9_all.deb squid-purge_3.5.12-1ubuntu7.17+tuxcare.els9_amd64.deb squid3_3.5.12-1ubuntu7.17+tuxcare.els9_all.deb squidclient_3.5.12-1ubuntu7.17+tuxcare.els9_amd64.deb

CVEs

CVE-2024-37894