Описание
Squid is vulnerable to Denial of Service attack against HTTP and HTTPS clients due to an Improper Handling of Structural Elements bug.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | released | 6.5-1ubuntu1 |
| esm-infra/focal | not-affected | 4.10-1ubuntu1.12 |
| focal | released | 4.10-1ubuntu1.12 |
| jammy | released | 5.7-0ubuntu0.22.04.4 |
| lunar | ignored | end of life, was deferred [2024-01-26] |
| mantic | released | 6.1-2ubuntu1.3 |
| noble | released | 6.5-1ubuntu1 |
| oracular | released | 6.5-1ubuntu1 |
| plucky | released | 6.5-1ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | DNE | |
| esm-infra/bionic | needed | |
| esm-infra/focal | DNE | |
| esm-infra/xenial | needed | |
| focal | DNE | |
| jammy | DNE | |
| lunar | DNE | |
| mantic | DNE | |
| noble | DNE |
Показывать по
Ссылки на источники
7.5 High
CVSS3
Связанные уязвимости
A flaw was found in Squid. The limits applied for validation of HTTP response headers are applied before caching. However, Squid may grow a cached HTTP response header beyond the configured maximum size, causing a stall or crash of the worker process when a large header is retrieved from the disk cache, resulting in a denial of service.
A flaw was found in Squid. The limits applied for validation of HTTP response headers are applied before caching. However, Squid may grow a cached HTTP response header beyond the configured maximum size, causing a stall or crash of the worker process when a large header is retrieved from the disk cache, resulting in a denial of service.
A flaw was found in Squid. The limits applied for validation of HTTP r ...
7.5 High
CVSS3