Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1646-2
HistoryOct 07, 2008 - 12:00 a.m.

squid - array bounds check

2008-10-0700:00:00
Google
osv.dev
9

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

A weakness has been discovered in squid, a caching proxy server. The
flaw was introduced upstream in response to CVE-2007-6239, and
announced by Debian in DSA-1482-1. The flaw involves an
over-aggressive bounds check on an array resize, and could be
exploited by an authorized client to induce a denial of service
condition against squid.

For the stable distribution (etch), these problems have been fixed in
version 2.6.5-6etch2.

We recommend that you upgrade your squid packages.

Related

openvas 58
nessus 28
seebug 1
oraclelinux 2
ubuntu 2
debiancve 2
debian 5
securityvulns 3
ubuntucve 2
prion 2
cve 2
gentoo 2
osv 1
centos 4
cert 1
redhat 2
fedora 3
veracode 2
freebsd 1
openvas
openvas
CentOS Update for squid CESA-2008:0214 centos3 i386
2009-02-27 00:00:00
Debian Security Advisory DSA 1646-2 (squid)
2008-11-01 00:00:00
CentOS Update for squid CESA-2008:0214 centos4 x86_64
2009-02-27 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : squid (MDVSA-2008:134)
2009-04-23 00:00:00
Debian DSA-1646-1 : squid - array bounds check
2008-10-07 00:00:00
RHEL 2.1 / 3 / 4 / 5 : squid (RHSA-2008:0214)
2008-04-11 00:00:00
seebug
seebug
Squid Webδ»£η†ηΌ“ε­˜arrayShrink()ε‡½ζ•°θΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž
2008-04-17 00:00:00
oraclelinux
oraclelinux
squid security update
2008-04-09 00:00:00
Moderate: squid security update
2007-12-18 00:00:00
ubuntu
ubuntu
Squid vulnerability
2008-04-14 00:00:00
Squid vulnerability
2008-01-09 00:00:00
debiancve
debiancve
CVE-2008-1612
2008-04-01 17:44:00
CVE-2007-6239
2007-12-04 18:46:00
debian
debian
[SECURITY] [DSA-1646-1] New squid packages fix array bounds check
2008-10-07 06:12:02
[SECURITY] [DSA 1646-2] New squid packages fix array bounds check
2008-10-11 06:47:39
[SECURITY] [DSA 1646-2] New squid packages fix array bounds check
2008-10-11 06:46:58
securityvulns
securityvulns
[USN-601-1] Squid vulnerability
2008-04-15 00:00:00
squid proxy server DoS
2007-12-12 00:00:00
squid proxy server DoS
2008-04-15 00:00:00
ubuntucve
ubuntucve
CVE-2008-1612
2008-04-01 00:00:00
CVE-2007-6239
2007-12-04 00:00:00
prion
prion
Code injection
2008-04-01 17:44:00
Memory corruption
2007-12-04 18:46:00
cve
cve
CVE-2008-1612
2008-04-01 17:44:00
CVE-2007-6239
2007-12-04 18:46:00
gentoo
gentoo
Squid: Multiple Denial of Service vulnerabilities
2009-03-24 00:00:00
Squid: Denial of service
2008-01-09 00:00:00
osv
osv
squid - programming error
2008-02-05 00:00:00
centos
centos
squid security update
2007-12-18 18:09:00
squid security update
2008-01-13 02:19:55
squid security update
2008-04-10 17:05:05
cert
cert
Squid remote denial-of-service vulnerability
2007-12-10 00:00:00
redhat
redhat
(RHSA-2007:1130) Moderate: squid security update
2007-12-18 00:00:00
(RHSA-2008:0214) Moderate: squid security update
2008-04-08 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: squid-2.6.STABLE17-1.fc8
2007-12-15 19:27:04
[SECURITY] Fedora 7 Update: squid-2.6.STABLE16-2.fc7
2007-12-15 19:27:50
[SECURITY] Fedora 8 Update: squid-2.6.STABLE19-1.fc8
2008-04-29 20:53:41
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:19:28
Denial Of Service (DoS)
2020-04-10 00:26:20
freebsd
freebsd
Squid -- Denial of Service Vulnerability
2007-11-28 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON
Related for OSV:DSA-1646-2
openvas58nessus28seebug1oraclelinux2ubuntu2debiancve2debian5securityvulns3ubuntucve2prion2cve2gentoo2osv1centos4cert1redhat2fedora3veracode2freebsd1