CVE-2019-12522

Name of the Vulnerable Software and Affected Versions: Squid versions through 4.7

Description: An issue was discovered in Squid when it is run as root. It spawns its child processes as a lesser user, by default the user nobody, via the leave suid call. The leave suid call leaves the Saved UID as 0, making it trivial for an attacker who has compromised the child process to escalate their privileges back to root.

Recommendations: For Squid versions through 4.7, consider disabling the leave suid call as a temporary workaround until a patch is available. Restrict access to the child processes to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.