logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-31807

Description

An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. An integer overflow problem allows a remote server to achieve Denial of Service when delivering responses to HTTP Range requests. The issue trigger is a header that can be expected to exist in HTTP traffic without any malicious intent. #### Bugs * <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989043> * <https://bugzilla.suse.com/show_bug.cgi?id=1185916> #### Notes Author| Note ---|--- [mdeslaur](<https://launchpad.net/~mdeslaur>) | same commit as CVE-2021-31806


Affected Package


OS OS Version Package Name Package Version
ubuntu 20.04 squid 4.10-1ubuntu1.4
ubuntu 20.10 squid 4.13-1ubuntu2.2
ubuntu 21.04 squid 4.13-1ubuntu4.1
ubuntu 21.10 squid 4.13-10ubuntu1
ubuntu 22.04 squid 4.13-10ubuntu1
ubuntu upstream squid 4.13-10ubuntu1
ubuntu upstream squid 4.15,4.13-10
ubuntu upstream squid3 any
ubuntu 16.04 squid3 any

Related