CVE-2014-7142

Опубликовано: 26 нояб. 2014

Источник: debian

EPSS Средний

Описание

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
squid	fixed	4.1-1		package
squid	no-dsa		squeeze	package
squid	no-dsa		wheezy	package
squid3	fixed	3.4.8-1		package
squid3	no-dsa		squeeze	package
squid3	no-dsa		wheezy	package

Примечания

https://bugzilla.suse.com/show_bug.cgi?id=891268
http://www.squid-cache.org/Advisories/SQUID-2014_4.txt

EPSS

Процентиль: 98%

0.64227

Средний

Связанные уязвимости

CVE-2014-7142

ubuntu

около 11 лет назад

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

CVE-2014-7142

redhat

больше 11 лет назад

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

CVE-2014-7142

nvd

около 11 лет назад

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

GHSA-rrff-4cvp-7q5p

github

больше 3 лет назад

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

SUSE-SU-2016:2089-1

suse-cvrf

больше 9 лет назад

Security update for squid3

EPSS

Процентиль: 98%

0.64227

Средний