squid 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1107272012
업데이트 : 2005.02.02
상세내용
Squid 는 웹 클라이언트를 위한 고성능 프락시 캐쉬 서버이다. 또한, FTP 와
고퍼, HTTP 데이터 오브젝트를 지원한다.
변경 사항
. Failed DNS Lookup Random Error Messages Information Disclosure
Vulnerability
. CAN-2005-0096 - NTLM Fakeauth_Auth Memory Leak Remote Denial Of Service Vulnerability
. CAN-2005-0097 - Malformed NTLM Type 3 Message Remote Denial of Service Vulnerability
. CAN-2005-0095 - Web Cache Communication Protocol Denial Of Service Vulnerability
. CAN-2005-0094 - Gopher To HTML Remote Buffer Overflow Vulnerability
Autoupdate 지원 : Packages System
pkgadd -F squid
update 패키지
RPMS :
. squid-2.5.STABLE5-7.i686.rpm
SRPMS :
. squid-2.5.STABLE5-7.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0097
http://www.securityfocus.com/bid/12276
http://www.securityfocus.com/bid/12275
http://www.securityfocus.com/bid/12324
http://www.securityfocus.com/bid/11865
|