Lucene search

K
ubuntuUbuntuUSN-2422-1
HistoryNov 25, 2014 - 12:00 a.m.

Squid vulnerabilities

2014-11-2500:00:00
ubuntu.com
32

6.4 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.938 High

EPSS

Percentile

99.1%

Releases

  • Ubuntu 14.10
  • Ubuntu 14.04 ESM

Packages

  • squid3 - Web proxy cache server

Details

Sebastian Krahmer discovered that the Squid pinger incorrectly handled
certain malformed ICMP packets. A remote attacker could possibly use this
issue to cause Squid to crash, resulting in a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu14.10noarchsquid3< 3.3.8-1ubuntu8.1UNKNOWN
Ubuntu14.10noarchsquid< 3.3.8-1ubuntu8.1UNKNOWN
Ubuntu14.10noarchsquid-cgi< 3.3.8-1ubuntu8.1UNKNOWN
Ubuntu14.10noarchsquid-purge< 3.3.8-1ubuntu8.1UNKNOWN
Ubuntu14.10noarchsquid3-dbg< 3.3.8-1ubuntu8.1UNKNOWN
Ubuntu14.10noarchsquidclient< 3.3.8-1ubuntu8.1UNKNOWN
Ubuntu14.04noarchsquid3< 3.3.8-1ubuntu6.2UNKNOWN
Ubuntu14.04noarchsquid< 3.3.8-1ubuntu6.2UNKNOWN
Ubuntu14.04noarchsquid-cgi< 3.3.8-1ubuntu6.2UNKNOWN
Ubuntu14.04noarchsquid-purge< 3.3.8-1ubuntu6.2UNKNOWN
Rows per page:
1-10 of 121

6.4 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.938 High

EPSS

Percentile

99.1%