logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2019-18676

Description

An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation, there is a heap-based buffer overflow that can result in Denial of Service to all clients using the proxy. Severity is high due to this vulnerability occurring before normal security checks; any remote client that can reach the proxy port can trivially perform the attack via a crafted URI scheme.


Affected Package


OS OS Version Package Name Package Version
Debian 12 squid 5.7-1
Debian 11 squid 4.13-10+deb11u1
Debian 10 squid 4.6-1+deb10u7
Debian 999 squid 5.7-1

Related