Описание
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | not-affected | code not present |
| precise | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| utopic | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 3.3.8-1ubuntu9 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [3.3.8-1ubuntu6.2]] |
| lucid | not-affected | code not shipped |
| precise | not-affected | code not shipped |
| trusty | released | 3.3.8-1ubuntu6.2 |
| trusty/esm | DNE | trusty was released [3.3.8-1ubuntu6.2] |
| upstream | needs-triage | |
| utopic | released | 3.3.8-1ubuntu8.1 |
Показывать по
EPSS
6.4 Medium
CVSS2
Связанные уязвимости
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain ...
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.
EPSS
6.4 Medium
CVSS2