Lucene search

K

[email protected]NVD:CVE-2019-12529

HistoryJul 11, 2019 - 7:15 p.m.

CVE-2019-12529

2019-07-1119:15:13

CWE-125

[email protected]

web.nvd.nist.gov

1

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.9%

An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the Proxy-Authorization header is parsed via uudecode. uudecode determines how many bytes will be decoded by iterating over the input and checking its table. The length is then used to start decoding the string. There are no checks to ensure that the length it calculates isn’t greater than the input buffer. This leads to adjacent memory being decoded as well. An attacker would not be able to retrieve the decoded data unless the Squid maintainer had configured the display of usernames on error pages.

Affected configurations

NVD

Node

squid-cachesquidRange2.0–2.7

OR

squid-cachesquidRange3.0–3.5.28

OR

squid-cachesquidRange4.0–4.7

OR

squid-cachesquidMatch2.7stable1

OR

squid-cachesquidMatch2.7stable2

OR

squid-cachesquidMatch2.7stable3

OR

squid-cachesquidMatch2.7stable4

OR

squid-cachesquidMatch2.7stable5

OR

squid-cachesquidMatch2.7stable6

OR

squid-cachesquidMatch2.7stable7

OR

squid-cachesquidMatch2.7stable8

OR

squid-cachesquidMatch2.7stable9

Node

debiandebian_linuxMatch8.0

OR

debiandebian_linuxMatch9.0

OR

debiandebian_linuxMatch10.0

Node

fedoraprojectfedoraMatch29

Node

opensuseleapMatch15.0

OR

opensuseleapMatch15.1

Node

canonicalubuntu_linuxMatch12.04-

OR

canonicalubuntu_linuxMatch16.04esm

OR

canonicalubuntu_linuxMatch18.04lts

OR

canonicalubuntu_linuxMatch19.04

References

lists.opensuse.org/opensuse-security-announce/2019-11/msg00053.html

lists.opensuse.org/opensuse-security-announce/2019-11/msg00056.html

www.squid-cache.org/Versions/v4/changesets/

www.squid-cache.org/Versions/v4/changesets/squid-4-dd46b5417809647f561d8a5e0e74c3aacd235258.patch

github.com/squid-cache/squid/commits/v4

lists.debian.org/debian-lts-announce/2019/07/msg00018.html

lists.debian.org/debian-lts-announce/2020/07/msg00009.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPXN2CLAGN5QSQBTOV5IGVLDOQSRFNTZ/

seclists.org/bugtraq/2019/Aug/42

usn.ubuntu.com/4065-1/

usn.ubuntu.com/4065-2/

www.debian.org/security/2019/dsa-4507

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.9%

Related for NVD:CVE-2019-12529

debiancve1 ubuntucve1 openvas15 alpinelinux1 prion1 cvelist1 debian6 redhatcve1 veracode1 osv6 cve1 ubuntu2 nessus20 mageia2 altlinux2 fedora1 amazon2 suse2 oraclelinux1 redhat1 rocky1 almalinux1 rosalinux1