12 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-1172
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This vulnerability allows remote attackers to deny service on vulnerable installations of The Squid Software Foundation Squid 3.5.27-20180318. Authentication is...
SUSE: Security Advisory (SUSE-SU-2018:1365-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : squid (ALAS-2020-1486)
The version of squid installed on the remote host is prior to 3.5.20-15. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1486 advisory. An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive informatio...
Security fix for the ALT Linux 8 package squid version 3.5.28-alt1
3.5.28-alt1 built Aug. 27, 2019 Alexey Shabalin in task 236485 July 15, 2019 Alexey Shabalin - Updated to 3.5.28. - Fixes: + CVE-2018-1000024 Crash processing SSL-Bumped traffic containing ESI + CVE-2018-1000027 Crash handling responses to internally generated requests + CVE-2018-1172 Crash in ES...
SUSE SLES11 Security Update : squid3 (SUSE-SU-2018:1365-1)
This update for squid3 fixes the following issues : - CVE-2018-1172: Fixed a DoS caused by incorrect handling of ESI responses. bsc1090089, SQUID-2018:3 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted...
SUSE-SU-2018:1365-1 Security update for squid3
This update for squid3 fixes the following issues: - CVE-2018-1172: Fixed a DoS caused by incorrect handling of ESI responses. bsc1090089, SQUID-2018:3...
Squid DoS Vulnerability (SQUID-2018:3)
Squid is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:squid-cache:squid";...
CVE-2018-1172
CVE-2018-1172 affects The Squid Software Foundation’s Squid proxy (notably versions around 3.5.27-20180318). The flaw is in ClientRequestContext::sslBumpAccessCheck; a crafted request can dereference a null pointer, enabling remote attackers to cause a denial-of-service with no authentication req...
CVE-2018-1172
This vulnerability allows remote attackers to deny service on vulnerable installations of The Squid Software Foundation Squid 3.5.27-20180318. Authentication is not required to exploit this vulnerability. The specific flaw exists within ClientRequestContext::sslBumpAccessCheck. A crafted request...
openSUSE Security Update : squid (openSUSE-2018-412)
This update fixes the following issues : - CVE-2018-1172: Squid Proxy Cache Denial of Service vulnerability bsc1090089. This update was imported from the SUSE:SLE-12-SP2:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
SUSE SLES12 Security Update : squid (SUSE-SU-2018:1122-1)
This update fixes the following issues : - CVE-2018-1172: Squid Proxy Cache Denial of Service vulnerability bsc1090089. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and forma...
SUSE-SU-2018:1122-1 security update for squid
This update fixes the following issues: - CVE-2018-1172: Squid Proxy Cache Denial of Service vulnerability bsc1090089...