Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-6270HistorySep 12, 2014 - 2:55 p.m.
CVE-2014-6270
2014-09-1214:55:00
Debian Security Bug Tracker
security-tracker.debian.org
13
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.072 Low
EPSS
Percentile
94.0%
Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | squid | < 4.1-1 | squid_4.1-1_all.deb |
| Debian | 11 | all | squid | < 4.1-1 | squid_4.1-1_all.deb |
| Debian | 10 | all | squid | < 4.1-1 | squid_4.1-1_all.deb |
| Debian | 999 | all | squid | < 4.1-1 | squid_4.1-1_all.deb |
| Debian | 13 | all | squid | < 4.1-1 | squid_4.1-1_all.deb |
Related
cve
cve
CVE-2014-6270
2014-09-12 14:55:00
freebsd
freebsd
squid -- Buffer overflow in SNMP processing
2014-09-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Squid snmpHandleUdp Off-by-one Buffer Overflow (CVE-2014-6270)
2014-09-30 00:00:00
prion
prion
Heap overflow
2014-09-12 14:55:00
fedora
fedora
[SECURITY] Fedora 21 Update: squid-3.4.7-2.fc21
2014-10-14 04:39:53
[SECURITY] Fedora 20 Update: squid-3.3.13-2.fc20
2014-10-14 04:46:09
[SECURITY] Fedora 19 Update: squid-3.3.13-2.fc19
2014-10-14 04:40:30
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:0028-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1983-1)
2021-06-09 00:00:00
Fedora Update for squid FEDORA-2014-10790
2014-10-15 00:00:00
nessus
nessus
FreeBSD : squid -- Buffer overflow in SNMP processing (d3324c55-3f11-11e4-ad16-001999f8d30b)
2014-09-19 00:00:00
Fedora 21 : squid-3.4.7-2.fc21 (2014-10767)
2014-10-14 00:00:00
SUSE SLES12 Security Update : squid (SUSE-SU-2015:0028-1)
2015-05-20 00:00:00
ubuntucve
ubuntucve
CVE-2014-6270
2014-09-12 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2016-03-07 00:00:00
mageia
mageia
Updated squid packages fix security vulnerabilities
2014-10-07 13:22:51
gentoo
gentoo
Squid: Multiple vulnerabilities
2016-07-09 00:00:00
suse
suse
Security update for squid3 (important)
2016-08-09 17:12:26
Security update for squid3 (important)
2016-08-16 18:08:55
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.072 Low
EPSS
Percentile
94.0%
Related for DEBIANCVE:CVE-2014-6270