CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
87.3%
Issue Overview:
The Squid Software Foundation Squid HTTP Caching Proxy contains a NULL Pointer Dereference vulnerability in HTTP Response X-Forwarded-For header processing that can result in Denial of Service to all clients of the proxy. This attack appear to be exploitable via Remote HTTP server responding with an X-Forwarded-For header to certain types of HTTP request.(CVE-2018-1000027)
The Squid Software Foundation Squid HTTP Caching Proxy contains a Incorrect Pointer Handling vulnerability in ESI Response Processing that can result in Denial of Service for all clients using the proxy… This attack appear to be exploitable via Remote server delivers an HTTP response payload containing valid but unusual ESI syntax.(CVE-2018-1000024)
Affected Packages:
squid
Issue Correction:
Run yum update squid to update your system.
New Packages:
i686:
squid-3.5.20-11.35.amzn1.i686
squid-migration-script-3.5.20-11.35.amzn1.i686
squid-debuginfo-3.5.20-11.35.amzn1.i686
src:
squid-3.5.20-11.35.amzn1.src
x86_64:
squid-debuginfo-3.5.20-11.35.amzn1.x86_64
squid-3.5.20-11.35.amzn1.x86_64
squid-migration-script-3.5.20-11.35.amzn1.x86_64
Red Hat: CVE-2018-1000024, CVE-2018-1000027
Mitre: CVE-2018-1000024, CVE-2018-1000027
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Amazon Linux | 1 | i686 | squid | < 3.5.20-11.35.amzn1 | squid-3.5.20-11.35.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | squid-migration-script | < 3.5.20-11.35.amzn1 | squid-migration-script-3.5.20-11.35.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | squid-debuginfo | < 3.5.20-11.35.amzn1 | squid-debuginfo-3.5.20-11.35.amzn1.i686.rpm |
Amazon Linux | 1 | x86_64 | squid-debuginfo | < 3.5.20-11.35.amzn1 | squid-debuginfo-3.5.20-11.35.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | squid | < 3.5.20-11.35.amzn1 | squid-3.5.20-11.35.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | squid-migration-script | < 3.5.20-11.35.amzn1 | squid-migration-script-3.5.20-11.35.amzn1.x86_64.rpm |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
87.3%