Bug 561811 - CVE-2010-0308 squid: temporary DoS (assertion failure) triggered by truncated DNS packet (SQUID-2010:1) [Fedora all]
Summary: CVE-2010-0308 squid: temporary DoS (assertion failure) triggered by truncated...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Fedora
Classification: Fedora
Component: squid
Version: 13
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Henrik Nordström
QA Contact: Fedora Extras Quality Assurance
URL: http://fedoraproject.org/wiki/Securit...
Whiteboard:
Depends On:
Blocks: CVE-2010-0308, SQUID-2010:1
TreeView+ depends on / blocked
 
Reported: 2010-02-04 12:06 UTC by Jan Lieskovsky
Modified: 2010-08-21 19:29 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2010-05-14 07:56:31 UTC
Type: ---
Embargoed:

Attachments (Terms of Use)

Description Jan Lieskovsky 2010-02-04 12:06:16 UTC 
This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected Fedora versions.

For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.

bug #556389:
CVE-2010-0308 squid: temporary DoS (assertion failure) triggered by truncated DNS packet (SQUID-2010:1)

When creating a Bodhi update request, please include the bug IDs of the respective parent bugs filed against the "Security Response" product. Please mention CVE ids in the RPM changelog when available.

Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=556389

Please note: this issue affects multiple supported versions of Fedora.  Only one tracking bug has been filed; please only close it when all affected versions are fixed.

For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs
Comment 1 Henrik Nordström 2010-02-04 22:54:23 UTC 
Updates to F11 & F12 is sumbitted to testing. See bug #556389
Comment 2 Fedora Update System 2010-02-06 23:45:26 UTC 
squid-3.1.0.16-5.fc12 has been submitted as an update for Fedora 12.
http://admin.fedoraproject.org/updates/squid-3.1.0.16-5.fc12
Comment 3 Fedora Update System 2010-02-09 04:58:17 UTC 
squid-3.1.0.16-5.fc12 has been pushed to the Fedora 12 testing repository.  If problems still persist, please make note of it in this bug report.
 If you want to test the update, you can install it with 
 su -c 'yum --enablerepo=updates-testing update squid'.  You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F12/FEDORA-2010-1552
Comment 4 Bug Zapper 2010-03-15 14:22:49 UTC 
This bug appears to have been reported against 'rawhide' during the Fedora 13 development cycle.
Changing version to '13'.

More information and reason for this action is here:
http://fedoraproject.org/wiki/BugZappers/HouseKeeping
Comment 5 Fedora Update System 2010-05-14 06:45:45 UTC 
squid-3.1.3-2.fc13 has been submitted as an update for Fedora 13.
http://admin.fedoraproject.org/updates/squid-3.1.3-2.fc13
Comment 6 Fedora Update System 2010-05-14 06:47:48 UTC 
squid-3.1.3-2.fc12 has been submitted as an update for Fedora 12.
http://admin.fedoraproject.org/updates/squid-3.1.3-2.fc12
Comment 7 Henrik Nordström 2010-05-14 06:59:57 UTC 
Actually this is already fixed since quite some time back but notification got lost because there was another update while 3.1.0.16-5 was in testing and that apparently did not obsolete this to inherit the bug..
Comment 8 Tomas Hoger 2010-05-14 07:56:31 UTC 
I'm closing this currentrelease based on comment #7 and I'll remove this bug from current update requests and change them to bugfix.
Comment 9 Fedora Update System 2010-08-21 19:29:28 UTC 
squid-3.1.6-1.fc12 has been submitted as an update for Fedora 12.
http://admin.fedoraproject.org/updates/squid-3.1.6-1.fc12
Note You need to log in before you can comment on or make changes to this bug.