5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.965 High
EPSS
Percentile
99.6%
Package : squid3
Version : 3.1.6-1.2+squeeze4
CVE ID : CVE-2014-3609
CVE-2014-3609: Denial of Service in Range header processing.
Ignore Range headers with unidentifiable byte-range values. If squid is
unable to determine the byte value for ranges, treat the header as
invalid.
Attachment:
signature.asc
Description: This is a digitally signed message part.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | s390 | squidclient | < 3.1.20-2.2+deb7u2 | squidclient_3.1.20-2.2+deb7u2_s390.deb |
Debian | 7 | mipsel | squid | < 2.7.STABLE9-4.1+deb7u1 | squid_2.7.STABLE9-4.1+deb7u1_mipsel.deb |
Debian | 7 | ia64 | squidclient | < 3.1.20-2.2+deb7u2 | squidclient_3.1.20-2.2+deb7u2_ia64.deb |
Debian | 7 | kfreebsd-amd64 | squidclient | < 3.1.20-2.2+deb7u2 | squidclient_3.1.20-2.2+deb7u2_kfreebsd-amd64.deb |
Debian | 7 | kfreebsd-i386 | squid3-dbg | < 3.1.20-2.2+deb7u2 | squid3-dbg_3.1.20-2.2+deb7u2_kfreebsd-i386.deb |
Debian | 7 | s390x | squid-cgi | < 3.1.20-2.2+deb7u2 | squid-cgi_3.1.20-2.2+deb7u2_s390x.deb |
Debian | 7 | powerpc | squid-cgi | < 3.1.20-2.2+deb7u2 | squid-cgi_3.1.20-2.2+deb7u2_powerpc.deb |
Debian | 7 | all | squid-common | < 2.7.STABLE9-4.1+deb7u1 | squid-common_2.7.STABLE9-4.1+deb7u1_all.deb |
Debian | 7 | armel | squid3 | < 3.1.20-2.2+deb7u2 | squid3_3.1.20-2.2+deb7u2_armel.deb |
Debian | 6 | amd64 | squid | < 2.7.STABLE9-2.1+deb6u1 | squid_2.7.STABLE9-2.1+deb6u1_amd64.deb |