Amazon Linux 1 Security Advisory: ALAS-2019-1176
Advisory Release Date: 2019-03-18 17:59 Pacific
Advisory Updated Date: 2019-03-25 23:09 Pacific
A memory leak was discovered in the way Squid handles SNMP denied queries. A remote attacker may use this flaw to exhaust the resources on the server machine. (CVE-2018-19132)
Affected Packages:
squid
Issue Correction:
Run yum update squid to update your system.
i686:
squid-3.5.20-12.38.amzn1.i686
squid-migration-script-3.5.20-12.38.amzn1.i686
squid-debuginfo-3.5.20-12.38.amzn1.i686
src:
squid-3.5.20-12.38.amzn1.src
x86_64:
squid-debuginfo-3.5.20-12.38.amzn1.x86_64
squid-3.5.20-12.38.amzn1.x86_64
squid-migration-script-3.5.20-12.38.amzn1.x86_64