CVE-2023-49285
Denial of Service in HTTP Message Processing in Squid
In short
Squid proxy has a bug that allows attackers to crash the service by sending specially crafted HTTP messages. This causes the web caching service to stop working for all users.
Technical detail
A buffer overread vulnerability in Squid's HTTP message parsing enables remote attackers to trigger a denial of service condition. The vulnerability requires sending malformed HTTP requests to the affected proxy service, resulting in process termination or service unavailability.
Summary generated and translated by AI from the official description.
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Affected products
squid-cache · squidWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://github.com/squid-cache/squid/commit/77b3fb4df0f126784d5fd4967c28ed40eb8d521bhttps://github.com/squid-cache/squid/commit/deee944f9a12c9fd399ce52f3e2526bb573a9470https://github.com/squid-cache/squid/security/advisories/GHSA-8w9r-p88v-mmx9https://lists.debian.org/debian-lts-announce/2024/01/msg00003.htmlhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A5QASTMCUSUEW3UOMKHZJB3FTONWSRXS/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MEV66D3PAAY6K7TWDT3WZBLCPLASFJDC/https://security.netapp.com/advisory/ntap-20240119-0004/http://www.squid-cache.org/Versions/v5/SQUID-2023_7.patchhttp://www.squid-cache.org/Versions/v6/SQUID-2023_7.patch