--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-bd8c6c6926
2024-04-25 01:19:12.575101
--------------------------------------------------------------------------------
Name : squid
Product : Fedora 39
Version : 6.9
Release : 1.fc39
URL :
http://www.squid-cache.org
Summary : The Squid proxy caching server
Description :
Squid is a high-performance proxy caching server for Web clients,
supporting FTP and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests.
Squid consists of a main server program squid, a Domain Name System
lookup program (dnsserver), a program for retrieving FTP data
(ftpget), and some management and client tools.
--------------------------------------------------------------------------------
Update Information:
New squid 6.9
security update
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 16 2024 Lubo�� Uhliarik <luhliari(a)redhat.com> - 7:6.9-1
- Resolves: #2262715 - squid-6.9 is available
* Sat Mar 9 2024 Lubo�� Uhliarik <luhliari(a)redhat.com> - 7:6.8-1
- new version 6.8
* Mon Feb 12 2024 Lubo�� Uhliarik <luhliari(a)redhat.com> - 7:6.7-1
- new version 6.7
- switch to autosetup
- fix FTBFS when using gcc14
* Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 7:6.6-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2260052 - TRIAGE CVE-2024-23638 squid: vulnerable to a Denial of Service
attack against Cache Manager error responses [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2260052
[ 2 ] Bug #2261713 - squid: FTBFS in Fedora rawhide/f40
https://bugzilla.redhat.com/show_bug.cgi?id=2261713
[ 3 ] Bug #2262715 - squid-6.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2262715
[ 4 ] Bug #2268368 - CVE-2024-25111 squid: Denial of Service in HTTP Chunked Decoding
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2268368
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-bd8c6c6926' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------