Home > Security > Advisories


Mandriva Advisories

Package name squid
Date November 21st, 2001
Advisory ID MDKSA-2001:088
Affected versions 7.1, 7.2, 8.0, 8.1, CS1.0
Synopsis Updated squid packages fix potential DoS

Problem Description

Vladimir Ivaschenko found a problem in the squid proxy server. Certain
FTP requests could cause the squid daemon to abort, making it
unavailable for a few seconds. If enough of these requests are sent in
a short period of time, the squid daemon will not restart itself.

Updated Packages

Mandrakelinux 7.1

 f51abc9cbfd388422ad429acb2e18fd8  7.1/RPMS/squid-2.3.STABLE5-2.3mdk.i586.rpm
a559c9f371a28e4b5d737b3ff6593bda  7.1/SRPMS/squid-2.3.STABLE5-2.3mdk.src.rpm

Mandrakelinux 7.2

 e36cc02064b0273ed02d82c7d4cfc1f9  7.2/RPMS/squid-2.3.STABLE5-2.2mdk.i586.rpm
463d7ea1054b280d715b8ac34b6dbdc4  7.2/SRPMS/squid-2.3.STABLE5-2.2mdk.src.rpm

Mandrakelinux 8.0

 d58e59c5f053b42fc9f437bad511a2ca  8.0/RPMS/squid-2.3.STABLE5-2.1mdk.i586.rpm
8afd5c63a7f376696ff83ce8aa5c0c50  8.0/SRPMS/squid-2.3.STABLE5-2.1mdk.src.rpm

Mandrakelinux 8.0/PPC

 fc66b1e213aaf4a94488538c6690893c  ppc/8.0/RPMS/squid-2.3.STABLE5-2.1mdk.ppc.rpm
8afd5c63a7f376696ff83ce8aa5c0c50  ppc/8.0/SRPMS/squid-2.3.STABLE5-2.1mdk.src.rpm

Mandrakelinux 8.1

 34571f8aa96a8f379afee5a71c5fc015  8.1/RPMS/squid-2.4.STABLE1-8.1mdk.i586.rpm
01d5894484804f9c9606bf4f9fcf5c13  8.1/SRPMS/squid-2.4.STABLE1-8.1mdk.src.rpm

Corporate Server 1.0.1

 f51abc9cbfd388422ad429acb2e18fd8  1.0.1/RPMS/squid-2.3.STABLE5-2.3mdk.i586.rpm
a559c9f371a28e4b5d737b3ff6593bda  1.0.1/SRPMS/squid-2.3.STABLE5-2.3mdk.src.rpm




To upgrade automatically, use MandrivaUpdate.


Please verify the update prior to upgrading to ensure the integrity of the downloaded package. You can do this with the command :

                rpm --checksig package.rpm

You can get the GPG public key of the Mandriva Security Team to verify the GPG signature of each RPM.

If you use MandrivaUpdate, the verification of md5 checksum and GPG signature is performed automatically for you.