PT-2023-7527 · Squid+10 · Squid+11

Joshua Rogers

·

Publicado

2023-11-24

·

Atualizado

2026-03-29

·

CVE-2023-49285

CVSS v3.1

8.6

Alta

VetorAV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Squid versions prior to 6.5
Description The issue is related to a Buffer Overread bug in Squid, which can be exploited by a remote attacker to cause a Denial of Service (DoS) attack against Squid HTTP Message processing. This can be achieved by sending a specially crafted HTTP request. Squid is a caching proxy for the Web that supports HTTP, HTTPS, FTP, and more.
Recommendations For Squid versions prior to 6.5, users are advised to upgrade to version 6.5 or later to fix the bug. There are no known workarounds for this issue. As a temporary workaround, consider restricting access to the Squid HTTP Message processing to minimize the risk of exploitation.

Exploit

Correção

DoS

Out of bounds Read

Buffer Overflow

Buffer Over-read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125CWE-119CWE-126

Identificadores relacionados

ALSA-2024:0046
ALSA-2024:0071
ALT-PU-2024-9370
AZL-32072
BDU:2023-08581
CESA-2024_0046
CVE-2023-49285
DLA-3709-1
DSA-5637-1
GHSA-8W9R-P88V-MMX9
MGASA-2024-0102
OESA-2023-1932
OPENSUSE-SU-2023_4698-1
OPENSUSE-SU-2024:13631-1
RHSA-2024:0046
RHSA-2024:0071
RHSA-2024:0072
RHSA-2024:0397
RHSA-2024:0771
RHSA-2024:0772
RHSA-2024:0773
RHSA-2024:1153
RHSA-2024:1787
RHSA-2024_0046
RHSA-2024_0071
RHSA-2024_1787
RLSA-2024:0046
ROSA-SA-2024-2479
SUSE-SU-2023:4698-1
SUSE-SU-2023:4724-1
SUSE-SU-2023:4825-1
SUSE-SU-2023_4698-1
SUSE-SU-2023_4724-1
SUSE-SU-2023_4825-1
USN-6594-1
USN-6857-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Red Hat
Red Os
Rocky Linux
Squid
Squid Cache
Suse
Ubuntu