[3.0] squid: Improper Protection of Alternate Path (CVE-2015-5400)
Squid before 3.5.6 does not properly handle CONNECT method peer
responses when configured with cache_peer,
which allows remote attackers to bypass intended restrictions and gain
access to a backend proxy via a CONNECT request.
References:
http://www.openwall.com/lists/oss-security/2015/07/06/8
http://www.squid-cache.org/Advisories/SQUID-2015\_2.txt
Patches:
Squid 3.1:
http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10494.patch
Squid 3.4:
http://www.squid-cache.org/Versions/v3/3.4/changesets/squid-3.4-13225.patch
Squid 3.5:
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13856.patch
(from redmine: issue id 4709, created on 2015-10-01, closed on 2015-12-04)
- Relations:
- parent #4706 (closed)
- Changesets:
- Revision 844cad6b by Natanael Copa on 2015-12-02T10:39:49Z:
main/squid: security upgrade to 3.4.14 (CVE-2015-3455,CVE-2015-5400)
fixes #4224
fixes #4709