CVE-2023-5824

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Squid (affected versions not specified)

Description A flaw was found in Squid, where the limits applied for validation of HTTP response headers are applied before caching. However, Squid may grow a cached HTTP response header beyond the configured maximum size, causing a stall or crash of the worker process when a large header is retrieved from the disk cache, resulting in a denial of service. The issue is related to an improper handling of structural elements, which can be exploited by a remote attacker to cause a denial of service against HTTP and HTTPS clients.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Improper Handling of Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-755

Related Identifiers

ALSA-2023:7465

ALSA-2023:7668

ALT-PU-2023-7250

ALT-PU-2023-7254

ALT-PU-2023-7461

ALT-PU-2024-9370

AZL-31904

AZL-63100

BDU:2023-08061

CESA-2023_7668

CVE-2023-5824

DLA-4312-1

DSA-5982-1

GHSA-543M-W2M2-G255

MGASA-2024-0126

OESA-2026-1048

OESA-2026-1049

OESA-2026-1050

OPENSUSE-SU-2024:13398-1

RHSA-2023:7465

RHSA-2023:7668

RHSA-2023_7465

RHSA-2023_7668

RHSA-2024:0072

RHSA-2024:0397

RHSA-2024:0771

RHSA-2024:0772

RHSA-2024:0773

RHSA-2024:1153

RLSA-2023:7668

ROSA-SA-2024-2477

USN-6728-1

USN-6728-2

USN-6728-3

Affected Products

Alt Linux

Almalinux

Centos

Debian

Linuxmint

Red Hat

Red Os

Rocky Linux

Squid

Squid Cache

Ubuntu

CVE-2023-5824

Weakness Enumeration

Related Identifiers

Affected Products

References · 80