Mandriva Linux Security Advisory : squid (MDVSA-2008:134)
Medium Nessus Plugin ID 36563
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionAn incorrect fix for CVE-2007-6239 resulted in Squid not performing proper bounds checking when processing cache update replies. Because of this, a remote authenticated user might have been able to trigger an assertion error and cause a denial of service (CVE-2008-1612).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected squid and / or squid-cachemgr packages.