Scientific Linux Security Update : squid on SL3.x, SL4.x, SL5.x i386/x86_64
Medium Nessus Plugin ID 60381
SynopsisThe remote Scientific Linux host is missing a security update.
DescriptionA flaw was found in the way squid manipulated HTTP headers for cached objects stored in system memory. An attacker could use this flaw to cause a squid child process to exit. This interrupted existing connections and made proxy services unavailable. Note: the parent squid process started a new child process, so this attack only resulted in a temporary denial of service. (CVE-2008-1612)
SolutionUpdate the affected squid package.