{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright © Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated squid packages that fix one security issue and two bugs are now\navailable for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Squid is a high-performance proxy caching server for web clients,\nsupporting FTP, Gopher, and HTTP data objects.\n\nIt was found that Squid configured with client-first SSL-bump did not\ncorrectly validate X.509 server certificate host name fields. A\nman-in-the-middle attacker could use this flaw to spoof a Squid server\nusing a specially crafted X.509 certificate. (CVE-2015-3455)\n\nThis update fixes the following bugs:\n\n* Previously, the squid process did not handle file descriptors correctly\nwhen receiving Simple Network Management Protocol (SNMP) requests. As a\nconsequence, the process gradually accumulated open file descriptors. This\nbug has been fixed and squid now handles SNMP requests correctly, closing\nfile descriptors when necessary. (BZ#1198778)\n\n* Under high system load, the squid process sometimes terminated\nunexpectedly with a segmentation fault during reboot. This update provides\nbetter memory handling during reboot, thus fixing this bug. (BZ#1225640)\n\nUsers of squid are advised to upgrade to these updated packages, which fix\nthese bugs. After installing this update, the squid service will be\nrestarted automatically.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:2378",
        "url": "https://access.redhat.com/errata/RHSA-2015:2378"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1102842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1102842"
      },
      {
        "category": "external",
        "summary": "1161600",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1161600"
      },
      {
        "category": "external",
        "summary": "1198778",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1198778"
      },
      {
        "category": "external",
        "summary": "1204375",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1204375"
      },
      {
        "category": "external",
        "summary": "1218118",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1218118"
      },
      {
        "category": "external",
        "summary": "1263338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1263338"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_2378.json"
      }
    ],
    "title": "Red Hat Security Advisory: squid security and bug fix update",
    "tracking": {
      "current_release_date": "2026-06-27T09:01:35+00:00",
      "generator": {
        "date": "2026-06-27T09:01:35+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "5.2.6"
        }
      },
      "id": "RHSA-2015:2378",
      "initial_release_date": "2015-11-19T05:51:27+00:00",
      "revision_history": [
        {
          "date": "2015-11-19T05:51:27+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-11-19T05:51:27+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-27T09:01:35+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 7)",
                  "product_id": "7Server",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 7)",
                  "product_id": "7Server-optional",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                  "product_id": "7Workstation",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
                  "product_id": "7Workstation-optional",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-7:3.3.8-26.el7.s390x",
                "product": {
                  "name": "squid-7:3.3.8-26.el7.s390x",
                  "product_id": "squid-7:3.3.8-26.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=s390x&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:3.3.8-26.el7.s390x",
                "product": {
                  "name": "squid-debuginfo-7:3.3.8-26.el7.s390x",
                  "product_id": "squid-debuginfo-7:3.3.8-26.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=s390x&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-sysvinit-7:3.3.8-26.el7.s390x",
                "product": {
                  "name": "squid-sysvinit-7:3.3.8-26.el7.s390x",
                  "product_id": "squid-sysvinit-7:3.3.8-26.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=s390x&epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64",
                "product": {
                  "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64",
                  "product_id": "squid-debuginfo-7:3.3.8-26.el7.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=ppc64&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:3.3.8-26.el7.ppc64",
                "product": {
                  "name": "squid-7:3.3.8-26.el7.ppc64",
                  "product_id": "squid-7:3.3.8-26.el7.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=ppc64&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64",
                "product": {
                  "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64",
                  "product_id": "squid-sysvinit-7:3.3.8-26.el7.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=ppc64&epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-7:3.3.8-26.el7.ppc64le",
                "product": {
                  "name": "squid-7:3.3.8-26.el7.ppc64le",
                  "product_id": "squid-7:3.3.8-26.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=ppc64le&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le",
                "product": {
                  "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le",
                  "product_id": "squid-debuginfo-7:3.3.8-26.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=ppc64le&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le",
                "product": {
                  "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le",
                  "product_id": "squid-sysvinit-7:3.3.8-26.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=ppc64le&epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64",
                "product": {
                  "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64",
                  "product_id": "squid-debuginfo-7:3.3.8-26.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=x86_64&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:3.3.8-26.el7.x86_64",
                "product": {
                  "name": "squid-7:3.3.8-26.el7.x86_64",
                  "product_id": "squid-7:3.3.8-26.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=x86_64&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64",
                "product": {
                  "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64",
                  "product_id": "squid-sysvinit-7:3.3.8-26.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=x86_64&epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-7:3.3.8-26.el7.src",
                "product": {
                  "name": "squid-7:3.3.8-26.el7.src",
                  "product_id": "squid-7:3.3.8-26.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=src&epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-7:3.3.8-26.el7.aarch64",
                "product": {
                  "name": "squid-7:3.3.8-26.el7.aarch64",
                  "product_id": "squid-7:3.3.8-26.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@3.3.8-26.el7?arch=aarch64&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64",
                "product": {
                  "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64",
                  "product_id": "squid-debuginfo-7:3.3.8-26.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@3.3.8-26.el7?arch=aarch64&epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64",
                "product": {
                  "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64",
                  "product_id": "squid-sysvinit-7:3.3.8-26.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-sysvinit@3.3.8-26.el7?arch=aarch64&epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.aarch64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64le",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.s390x",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-sysvinit-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64"
        },
        "product_reference": "squid-sysvinit-7:3.3.8-26.el7.aarch64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64"
        },
        "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-sysvinit-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le"
        },
        "product_reference": "squid-sysvinit-7:3.3.8-26.el7.ppc64le",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-sysvinit-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x"
        },
        "product_reference": "squid-sysvinit-7:3.3.8-26.el7.s390x",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-sysvinit-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-7:3.3.8-26.el7.aarch64"
        },
        "product_reference": "squid-7:3.3.8-26.el7.aarch64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-7:3.3.8-26.el7.ppc64"
        },
        "product_reference": "squid-7:3.3.8-26.el7.ppc64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-7:3.3.8-26.el7.ppc64le"
        },
        "product_reference": "squid-7:3.3.8-26.el7.ppc64le",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-7:3.3.8-26.el7.s390x"
        },
        "product_reference": "squid-7:3.3.8-26.el7.s390x",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-7:3.3.8-26.el7.src"
        },
        "product_reference": "squid-7:3.3.8-26.el7.src",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.aarch64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.ppc64le",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.s390x",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-sysvinit-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-sysvinit-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:squid-7:3.3.8-26.el7.src"
        },
        "product_reference": "squid-7:3.3.8-26.el7.src",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:squid-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:3.3.8-26.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64"
        },
        "product_reference": "squid-debuginfo-7:3.3.8-26.el7.x86_64",
        "relates_to_product_reference": "7Workstation"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2015-3455",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2015-05-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1218118"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that Squid configured with client-first SSL-bump did not correctly validate X.509 server certificate host name fields. A man-in-the-middle attacker could use this flaw to spoof a Squid server using a specially crafted X.509 certificate.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "squid: incorrect X509 server certificate validation (SQUID-2015:1)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of squid as shipped with Red Hat Enterprise Linux 5 and 6.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64",
          "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64",
          "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le",
          "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x",
          "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64",
          "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64",
          "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64",
          "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le",
          "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x",
          "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64",
          "7Server:squid-7:3.3.8-26.el7.aarch64",
          "7Server:squid-7:3.3.8-26.el7.ppc64",
          "7Server:squid-7:3.3.8-26.el7.ppc64le",
          "7Server:squid-7:3.3.8-26.el7.s390x",
          "7Server:squid-7:3.3.8-26.el7.src",
          "7Server:squid-7:3.3.8-26.el7.x86_64",
          "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64",
          "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64",
          "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le",
          "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x",
          "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64",
          "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64",
          "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64",
          "7Workstation:squid-7:3.3.8-26.el7.src",
          "7Workstation:squid-7:3.3.8-26.el7.x86_64",
          "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-3455"
        },
        {
          "category": "external",
          "summary": "RHBZ#1218118",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1218118"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-3455",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-3455"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-3455",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3455"
        },
        {
          "category": "external",
          "summary": "http://www.squid-cache.org/Advisories/SQUID-2015_1.txt",
          "url": "http://www.squid-cache.org/Advisories/SQUID-2015_1.txt"
        }
      ],
      "release_date": "2015-05-01T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-19T05:51:27+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64",
            "7Server:squid-7:3.3.8-26.el7.aarch64",
            "7Server:squid-7:3.3.8-26.el7.ppc64",
            "7Server:squid-7:3.3.8-26.el7.ppc64le",
            "7Server:squid-7:3.3.8-26.el7.s390x",
            "7Server:squid-7:3.3.8-26.el7.src",
            "7Server:squid-7:3.3.8-26.el7.x86_64",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64",
            "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64",
            "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64",
            "7Workstation:squid-7:3.3.8-26.el7.src",
            "7Workstation:squid-7:3.3.8-26.el7.x86_64",
            "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2378"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
            "version": "2.0"
          },
          "products": [
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.aarch64",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.ppc64le",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.s390x",
            "7Server-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.aarch64",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.ppc64le",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.s390x",
            "7Server-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64",
            "7Server:squid-7:3.3.8-26.el7.aarch64",
            "7Server:squid-7:3.3.8-26.el7.ppc64",
            "7Server:squid-7:3.3.8-26.el7.ppc64le",
            "7Server:squid-7:3.3.8-26.el7.s390x",
            "7Server:squid-7:3.3.8-26.el7.src",
            "7Server:squid-7:3.3.8-26.el7.x86_64",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.aarch64",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.ppc64le",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.s390x",
            "7Server:squid-debuginfo-7:3.3.8-26.el7.x86_64",
            "7Workstation-optional:squid-debuginfo-7:3.3.8-26.el7.x86_64",
            "7Workstation-optional:squid-sysvinit-7:3.3.8-26.el7.x86_64",
            "7Workstation:squid-7:3.3.8-26.el7.src",
            "7Workstation:squid-7:3.3.8-26.el7.x86_64",
            "7Workstation:squid-debuginfo-7:3.3.8-26.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "squid: incorrect X509 server certificate validation (SQUID-2015:1)"
    }
  ]
}