[CLSA-2024:1725012269] Fix CVE(s): CVE-2024-37894
Type:
security
Severity:
Moderate
Release date:
2024-08-30 10:04:32 UTC
Description:
* SECURITY UPDATE: Memory Corruption via Out-of-bounds Write in ESI variable assignment - debian/patches/CVE-2024-37894.patch: fix incorrect type declaration in TrieNode.cc to prevent potential type conversion issues - CVE-2024-37894
Updated packages:
  • squid_3.5.27-1ubuntu1.14+tuxcare.els7_amd64.deb
    sha:c3ba8db9b2237ab8e18bb462e7443cf698da1e4f
  • squid-cgi_3.5.27-1ubuntu1.14+tuxcare.els7_amd64.deb
    sha:810b36e80bf61f9e61b603cab742cd176bd5127f
  • squid-common_3.5.27-1ubuntu1.14+tuxcare.els7_all.deb
    sha:22c9b96529d48a251cd64efb05d72cb1e362db75
  • squid-purge_3.5.27-1ubuntu1.14+tuxcare.els7_amd64.deb
    sha:f4d8f053a4fa7bc50e32b06ca755ca9c693b2149
  • squid3_3.5.27-1ubuntu1.14+tuxcare.els7_all.deb
    sha:1b6bf3ace3e9c04e4b4cf6bf775effcab78b37aa
  • squidclient_3.5.27-1ubuntu1.14+tuxcare.els7_amd64.deb
    sha:8e139c4cc615b88529acb20ea1cc33332615d823
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.