| - |
- CVE-2021-28651 can be mitigated by disabling URN processing by the proxy, by adding these lines to squid.conf: |
| + |
- CVE-2021-28651 can be mitigated by disabling URN processing by the |
| + |
proxy, by adding these lines to squid.conf: |
| |
|
| |
acl URN proto URN |
| |
http_access deny URN |
| |
|
| - |
- CVE-2021-28652 can be mitigated by either disabling Cache Manager access entirely if not needed, by placing the following line in squid.conf before lines containing "allow": |
| + |
- CVE-2021-28652 can be mitigated by either disabling Cache Manager |
| + |
access entirely if not needed, by placing the following line in |
| + |
squid.conf before lines containing "allow": |
| |
|
| |
http_access deny manager |
| |
|
| - |
or by hardening Cache Manager access privileges, for example: require authentication or other access controls in http_access beyond the default IP address restriction. |
| + |
or by hardening Cache Manager access privileges, for example: require |
| + |
authentication or other access controls in http_access beyond the |
| + |
default IP address restriction. |
| |
|
| |
- No known mitigations exist for CVE-2021-28662. |