Lucene search

CloudLinuxCLSA-2023:1701286463

HistoryNov 29, 2023 - 7:34 p.m.

squid34: Fix of CVE-2023-46847

2023-11-2919:34:27

repo.cloudlinux.com

squid34 unix security fix

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.03 Low

EPSS

Percentile

90.9%

JSON

CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization

OSVersionArchitecturePackageVersionFilename
Centos6x86_64squid34< 3.4.14squid34-3.4.14-16.el6.tuxcare.els4.src.rpm

OS	Version	Architecture	Package	Version	Filename
Centos	6	x86_64	squid34	< 3.4.14	squid34-3.4.14-16.el6.tuxcare.els4.src.rpm

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.03 Low

EPSS

Percentile

90.9%

JSON

Related for CLSA-2023:1701286463