Описание
Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only occurs when cache_peer is used with the cache digests feature. The problem exists because peerDigestHandleReply() livelocking in peer_digest.cc mishandles EOF.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | released | 4.13-1ubuntu1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | released | 4.10-1ubuntu1.2 |
| focal | released | 4.10-1ubuntu1.2 |
| groovy | released | 4.13-1ubuntu1 |
| hirsute | released | 4.13-1ubuntu1 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.5.27-1ubuntu1.9 |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 3.5.27-1ubuntu1.9 |
| esm-infra/focal | DNE | |
| esm-infra/xenial | released | 3.5.12-1ubuntu7.15 |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE | |
| precise/esm | ignored | end of life, was needs-triage |
Показывать по
7.1 High
CVSS2
8.6 High
CVSS3
Связанные уязвимости
Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only occurs when cache_peer is used with the cache digests feature. The problem exists because peerDigestHandleReply() livelocking in peer_digest.cc mishandles EOF.
Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only occurs when cache_peer is used with the cache digests feature. The problem exists because peerDigestHandleReply() livelocking in peer_digest.cc mishandles EOF.
Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perfor ...
Уязвимость функции peerDigestHandleReply() прокси-сервера Squid, связанная с недостатком механизма проверки вводимых данных, позволяющая нарушителю вызвать отказ в обслуживании
7.1 High
CVSS2
8.6 High
CVSS3