CVE-2008-1612

Name of the Vulnerable Software and Affected Versions Squid version 2.6.STABLE17

Description The issue is related to the arrayShrink function in lib/Array.c, which allows attackers to cause a denial of service, resulting in a process exit. This occurs when an array is shrunk to 0 entries, triggering an assert error. The problem arose from an incorrect fix for a previous issue.

Recommendations For Squid version 2.6.STABLE17, consider disabling the arrayShrink function in lib/Array.c as a temporary workaround to prevent potential denial of service attacks. However, since this is a specific function-related issue, the best course of action would be to wait for an official patch that correctly addresses the problem. At the moment, there is no information about a newer version that contains a fix for this vulnerability.