Mandrake Linux Security Advisory : squid (MDKSA-2005:162)
Medium Nessus Plugin ID 19917
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionTwo vulnerabilities were recently discovered in squid :
The first is a DoS possible via certain aborted requests that trigger an assertion error related to 'STOP_PENDING' (CVE-2005-2794).
The second is a DoS caused by certain crafted requests and SSL timeouts (CVE-2005-2796).
The updated packages have been patched to address these issues.
SolutionUpdate the affected squid package.