Описание
A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a client. This is fixed in 5.7.
A flaw was found in Squid. An incorrect integer overflow protection in the Squid SSPI and SMB authentication helpers is vulnerable to a buffer overflow attack, resulting in information disclosure.
Меры по смягчению последствий
Disable use of the vulnerable authentication scheme.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | squid | Out of support scope | ||
| Red Hat Enterprise Linux 6 | squid34 | Out of support scope | ||
| Red Hat Enterprise Linux 7 | squid | Fixed | RHSA-2022:6815 | 05.10.2022 |
| Red Hat Enterprise Linux 8 | squid | Fixed | RHSA-2022:6775 | 04.10.2022 |
| Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions | squid | Fixed | RHSA-2022:6774 | 04.10.2022 |
| Red Hat Enterprise Linux 8.2 Extended Update Support | squid | Fixed | RHSA-2022:6777 | 04.10.2022 |
| Red Hat Enterprise Linux 8.4 Extended Update Support | squid | Fixed | RHSA-2022:6776 | 04.10.2022 |
| Red Hat Enterprise Linux 9 | squid | Fixed | RHSA-2022:6839 | 06.10.2022 |
Показывать по
Дополнительная информация
Статус:
EPSS
8.6 High
CVSS3
Связанные уязвимости
A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a client. This is fixed in 5.7.
A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a client. This is fixed in 5.7.
A buffer over-read was discovered in libntlmauth in Squid 2.5 through ...
EPSS
8.6 High
CVSS3