Lucene search
K

447 matches found

OSV
OSV
added 2024/07/26 12:33 p.m.23 views

RLSA-2024:4861 Moderate: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: vulnerable to a Denial of Service attack against Cache Manager error responses CVE-2024-23638 squid: Out-of-bounds write error may lead to Denial of Service...

6.5CVSS7AI score0.6005EPSS
Exploits1References3
OSV
OSV
added 2024/07/25 12:0 a.m.24 views

ALSA-2024:4861 Moderate: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: vulnerable to a Denial of Service attack against Cache Manager error responses CVE-2024-23638 squid: Out-of-bounds write error may lead to Denial of Service...

6.5CVSS7AI score0.6005EPSS
Exploits1References6
Redos
Redos
added 2024/07/25 12:0 a.m.39 views

ROS-20240725-02

Squid proxy vulnerability is related to SSL/TLS certificate validation errors. Exploitation The vulnerability could allow a remote attacker to cause a denial of service...

8.6CVSS6.8AI score0.04012EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2024/07/25 12:0 a.m.43 views

Moderate: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: vulnerable to a Denial of Service attack against Cache Manager error responses CVE-2024-23638 squid: Out-of-bounds write error may lead to Denial of Service...

6.5CVSS6.9AI score0.6005EPSS
Exploits1References6
Citrix
Citrix
added 2024/07/18 12:0 a.m.12 views

[NetScaler] Squid may record "error:transaction-end-before-headers" when be the service of LB

In a NetScaler Load Balancing deployment, you may have a Squild proxy server configured as a NetScaler LB Service. And you may observe "error:transaction-end-before-headers" recorded on Squid server. The error apears periodically with several seconds interval. Log sample: Timestamp xxxx...

7.1AI score
Exploits0
OSV
OSV
added 2024/07/05 11:8 a.m.5 views

OESA-2024-1785 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an...

6.3CVSS7AI score0.06255EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/07/05 12:0 a.m.2 views

The vulnerability of the Squid proxy server, related to writing beyond the buffer limit, allows a hacker to cause a service failure.

The vulnerability of the Squid proxy server is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to cause a service failure...

6.3CVSS6.7AI score0.06255EPSS
Exploits0References8Affected Software4
SUSE CVE
SUSE CVE
added 2024/06/26 11:18 p.m.5 views

SUSE CVE-2024-37894

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack...

6.3CVSS7AI score0.06255EPSS
Exploits0References7
OSV
OSV
added 2024/06/25 8:15 p.m.1 views

DEBIAN-CVE-2024-37894

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack...

6.3CVSS6.2AI score0.06255EPSS
Exploits0References1
NVD
NVD
added 2024/06/25 8:15 p.m.22 views

CVE-2024-37894

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack...

6.3CVSS0.06255EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/06/25 8:15 p.m.27 views

CVE-2024-37894

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack...

6.3CVSS6.6AI score0.06255EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/05/13 1:42 a.m.33 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.6CVSS7.3AI score0.65254EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/04/16 10:45 a.m.39 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this...

8.6CVSS6.8AI score0.88864EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/04/12 12:0 a.m.8 views

The vulnerability of the Squid proxy server, related to uncontrolled resource consumption, allows a hacker to cause a service failure.

The vulnerability of the Squid proxy server is related to uncontrolled resource consumption due to filtering and reducing data to unsafe values during the processing of HTTP headers. Exploiting this vulnerability can allow a remote attacker to cause service interruptions, provided that the defaul...

8.6CVSS6.7AI score0.88864EPSS
Exploits0References9Affected Software3
RedHat Linux
RedHat Linux
added 2024/04/11 5:0 p.m.18 views

squid: Denial of Service in SSL Certificate validation

A flaw was found in Squid. Due to an improper validation of the specified index bug, Squid compiled using --with-openssl is vulnerable to a denial of service attack against SSL Certificate validation. This flaw allows a remote server to perform a denial of service against the Squid Proxy by...

8.6CVSS5.8AI score0.04012EPSS
Exploits0References8
Amazon
Amazon
added 2024/04/02 12:0 a.m.6 views

Important: squid

Issue Overview: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no know...

8.6CVSS7.3AI score0.88818EPSS
Exploits1
Redos
Redos
added 2024/03/29 12:0 a.m.43 views

ROS-20240329-02

A vulnerability in the Squid proxy server is related to the dereferencing of an expired pointer. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS6.7AI score0.6005EPSS
Exploits1
OSV
OSV
added 2024/03/19 12:0 a.m.40 views

ALSA-2024:1375 Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: denial of service in HTTP header parser CVE-2024-25617 squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 squid: denial of service in HTTP request...

8.6CVSS7.4AI score0.88864EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2024/03/19 12:0 a.m.57 views

Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: denial of service in HTTP header parser CVE-2024-25617 squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 squid: denial of service in HTTP request...

8.6CVSS7.3AI score0.88864EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2024/03/18 12:0 a.m.6 views

The vulnerability of the HttpStateData() function in the Chunked decoder of the Squid proxy server allows a hacker to induce a service failure.

The vulnerability of the HttpStateData function in the Chunked decoder of the Squid proxy server is related to buffer overflows in the stack due to uncontrolled recursion during HTTP message processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

8.6CVSS7.9AI score0.65254EPSS
Exploits0References7Affected Software3
Rows per page
Query Builder