logo
DATABASE RESOURCES PRICING ABOUT US

Denial Of Service (DoS)

Description

squid is vulnerable to denial of service (DoS). The vulnerability exists due to incorrect input validation, the NTLM authentication credentials parser in ext_lm_group_acl may write to memory outside the credentials buffer. On systems with memory access protections, this can result in the helper process being terminated unexpectedly.


Affected Software


CPE Name Name Version
squid:3.10 4.8-r1
squid 3.5.27-r3
squid:3.11 4.9-r0
squid3:xenial 3.5.12-1ubuntu7
squid3:bionic 3.5.27-1ubuntu1
squid:eoan 4.8-1ubuntu2

Related