Bug 561811 - CVE-2010-0308 squid: temporary DoS (assertion failure) triggered by truncated DNS packet (SQUID-2010:1) [Fedora all]
Summary: CVE-2010-0308 squid: temporary DoS (assertion failure) triggered by truncated...
Alias: None
Product: Fedora
Classification: Fedora
Component: squid
Version: 13
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Henrik Nordström
QA Contact: Fedora Extras Quality Assurance
URL: http://fedoraproject.org/wiki/Securit...
Depends On:
Blocks: CVE-2010-0308, SQUID-2010:1
TreeView+ depends on / blocked
Reported: 2010-02-04 12:06 UTC by Jan Lieskovsky
Modified: 2010-08-21 19:29 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2010-05-14 07:56:31 UTC
Type: ---

Attachments (Terms of Use)

Description Jan Lieskovsky 2010-02-04 12:06:16 UTC
This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected Fedora versions.

For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.

bug #556389:
CVE-2010-0308 squid: temporary DoS (assertion failure) triggered by truncated DNS packet (SQUID-2010:1)

When creating a Bodhi update request, please include the bug IDs of the respective parent bugs filed against the "Security Response" product. Please mention CVE ids in the RPM changelog when available.

Bodhi update submission link:

Please note: this issue affects multiple supported versions of Fedora.  Only one tracking bug has been filed; please only close it when all affected versions are fixed.

For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs

Comment 1 Henrik Nordström 2010-02-04 22:54:23 UTC
Updates to F11 & F12 is sumbitted to testing. See bug #556389

Comment 2 Fedora Update System 2010-02-06 23:45:26 UTC
squid- has been submitted as an update for Fedora 12.

Comment 3 Fedora Update System 2010-02-09 04:58:17 UTC
squid- has been pushed to the Fedora 12 testing repository.  If problems still persist, please make note of it in this bug report.
 If you want to test the update, you can install it with 
 su -c 'yum --enablerepo=updates-testing update squid'.  You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F12/FEDORA-2010-1552

Comment 4 Bug Zapper 2010-03-15 14:22:49 UTC
This bug appears to have been reported against 'rawhide' during the Fedora 13 development cycle.
Changing version to '13'.

More information and reason for this action is here:

Comment 5 Fedora Update System 2010-05-14 06:45:45 UTC
squid-3.1.3-2.fc13 has been submitted as an update for Fedora 13.

Comment 6 Fedora Update System 2010-05-14 06:47:48 UTC
squid-3.1.3-2.fc12 has been submitted as an update for Fedora 12.

Comment 7 Henrik Nordström 2010-05-14 06:59:57 UTC
Actually this is already fixed since quite some time back but notification got lost because there was another update while was in testing and that apparently did not obsolete this to inherit the bug..

Comment 8 Tomas Hoger 2010-05-14 07:56:31 UTC
I'm closing this currentrelease based on comment #7 and I'll remove this bug from current update requests and change them to bugfix.

Comment 9 Fedora Update System 2010-08-21 19:29:28 UTC
squid-3.1.6-1.fc12 has been submitted as an update for Fedora 12.

Note You need to log in before you can comment on or make changes to this bug.