[SECURITY] Fedora 7 Update: squid-2.6.STABLE16-2.fc7

updates at fedoraproject.org updates at fedoraproject.org
Sat Dec 15 19:27:50 UTC 2007 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-4161
2007-12-15 17:48:56
--------------------------------------------------------------------------------

Name        : squid
Product     : Fedora 7
Version     : 2.6.STABLE16
Release     : 2.fc7
URL         : http://www.squid-cache.org
Summary     : The Squid proxy caching server
Description :
Squid is a high-performance proxy caching server for Web clients,
supporting FTP, gopher, and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests.

Squid consists of a main server program squid, a Domain Name System
lookup program (dnsserver), a program for retrieving FTP data
(ftpget), and some management and client tools.

--------------------------------------------------------------------------------
ChangeLog:

* Thu Dec  6 2007 Martin Nagy <mnagy at redhat.com> - 7:2.6.STABLE16-1
- Upstream patch to fix CVE-2007-6239 (#410181)
* Fri Sep  7 2007 Martin Bacovsky <mbacovsk at redhat.com> - 7:2.6.STABLE16-1
- upgrade to latest upstream 2.6.STABLE14
* Wed Aug  1 2007 Martin Bacovsky <mbacovsk at redhat.com> - 7:2.6.STABLE14-1
- upgrade to latest upstream 2.6.STABLE14
* Mon Jun  4 2007 Martin Bacovsky <mbacovsk at redhat.com> - 7:2.6.STABLE13-1
- update to latest upstream 2.6.STABLE13
- resolves: #242423: Squid Version Violation
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #410181 - CVE-2007-6239 squid: DoS in cache updates
        https://bugzilla.redhat.com/show_bug.cgi?id=410181
  [ 2 ] Bug #412381 - CVE-2007-6239 squid: DoS in cache updates [7]
        https://bugzilla.redhat.com/show_bug.cgi?id=412381
--------------------------------------------------------------------------------
Updated packages:

9b09e65be3b20fb059c46d9380e0a24a9b11a3da squid-debuginfo-2.6.STABLE16-2.fc7.ppc64.rpm
4c2b0a2f82fe982d4e24b5d3f73e57345898a0d4 squid-2.6.STABLE16-2.fc7.ppc64.rpm
d7317ec758be30e6be4751157d655c2056a37190 squid-2.6.STABLE16-2.fc7.i386.rpm
aa07dad7021ac0723bdef974705b65769ac62602 squid-debuginfo-2.6.STABLE16-2.fc7.i386.rpm
4ff13968187335a067f6d0ff9bc0d0ccdc0f3226 squid-debuginfo-2.6.STABLE16-2.fc7.x86_64.rpm
78199f68e51a8f530357eb27996534e98513fe27 squid-2.6.STABLE16-2.fc7.x86_64.rpm
b96a81d03d56f3d645b50b9ebaf62de9b8d0f7ab squid-2.6.STABLE16-2.fc7.ppc.rpm
5432b0bd809560afda26899a1e824ed0638c29b1 squid-debuginfo-2.6.STABLE16-2.fc7.ppc.rpm
058f37aa3c43739cb16922e4a797698cd5756996 squid-2.6.STABLE16-2.fc7.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update squid' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------

More information about the Fedora-package-announce mailing list