Lucene search

K

MitreCVELIST:CVE-2019-12854

HistoryAug 15, 2019 - 4:15 p.m.

CVE-2019-12854

2019-08-1516:15:23

mitre

www.cve.org

1

8.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.1%

Due to incorrect string termination, Squid cachemgr.cgi 4.0 through 4.7 may access unallocated memory. On systems with memory access protections, this can cause the CGI process to terminate unexpectedly, resulting in a denial of service for all clients using it.

References

lists.opensuse.org/opensuse-security-announce/2019-11/msg00053.html

lists.opensuse.org/opensuse-security-announce/2019-11/msg00056.html

www.squid-cache.org/Advisories/SQUID-2019_1.txt

www.squid-cache.org/Versions/v4/changesets/squid-4-2981a957716c61ff7e21eee1d7d6eb5a237e466d.patch

bugs.squid-cache.org/show_bug.cgi?id=4937

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPXN2CLAGN5QSQBTOV5IGVLDOQSRFNTZ/

seclists.org/bugtraq/2019/Aug/42

usn.ubuntu.com/4213-1/

www.debian.org/security/2019/dsa-4507

8.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.1%

Related for CVELIST:CVE-2019-12854

osv4 cve1 nvd1 debiancve1 prion1 ubuntucve1 redhatcve1 openvas9 mageia1 nessus12 fedora1 altlinux1 debian2 ubuntu1 suse2 redhat1 almalinux1 oraclelinux1 rocky1