Описание
In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.
A vulnerability was found in squid (Web proxy cache server). This issue occurs due to improper buffer management while processing Gopher server responses. This flaw leads to a remote denial of service or a crash if it receives specially crafted network traffic, either by mistake or a malicious actor.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | squid | Out of support scope | ||
| Red Hat Enterprise Linux 6 | squid34 | Out of support scope | ||
| Red Hat Enterprise Linux 7 | squid | Fixed | RHSA-2022:5542 | 11.07.2022 |
| Red Hat Enterprise Linux 8 | squid | Fixed | RHSA-2022:5526 | 07.07.2022 |
| Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions | squid | Fixed | RHSA-2022:5530 | 07.07.2022 |
| Red Hat Enterprise Linux 8.2 Extended Update Support | squid | Fixed | RHSA-2022:5529 | 07.07.2022 |
| Red Hat Enterprise Linux 8.4 Extended Update Support | squid | Fixed | RHSA-2022:5528 | 07.07.2022 |
| Red Hat Enterprise Linux 9 | squid | Fixed | RHSA-2022:5527 | 07.07.2022 |
Показывать по
Дополнительная информация
Статус:
7.5 High
CVSS3
Связанные уязвимости
In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.
In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.
In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due ...
7.5 High
CVSS3