Описание
An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as information associated with other users' sessions or non-Squid processes.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | released | 4.9-2ubuntu4 |
| eoan | released | 4.8-1ubuntu2.2 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | not-affected | 4.9-2ubuntu4 |
| focal | released | 4.9-2ubuntu4 |
| groovy | released | 4.9-2ubuntu4 |
| hirsute | released | 4.9-2ubuntu4 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.5.27-1ubuntu1.5 |
| devel | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 3.5.27-1ubuntu1.5 |
| esm-infra/focal | DNE | |
| esm-infra/xenial | not-affected | 3.5.12-1ubuntu7.10 |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE |
Показывать по
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as information associated with other users' sessions or non-Squid processes.
An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as information associated with other users' sessions or non-Squid processes.
An issue was discovered in Squid before 4.10. It allows a crafted FTP ...
An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as information associated with other users' sessions or non-Squid processes.
Уязвимость прокси-сервера Squid, связанная с выходом операции за границы буфера в памяти, позволяюшая нарушителю получить доступ к защищаемой информации
5 Medium
CVSS2
7.5 High
CVSS3