Remote Denial of Service Vulnerability Patched in Squid Proxy Cache Server
#1
Quote:Squid's development team has released a security update on October 27 patching a Denial of Service (DoS) SNMP processing issue and a Cross-Site Scripting (XSS) issue in TLS error processing.

The Squid fully-featured HTTP/1.0  proxy provides authorization and logging features for web proxies and Internet-facing applications, and it can be installed and used on a multitude of platforms from Linux-based machines to Windows computers, as well as macOS-powered workstations using the Fink package manager.

According to the SQUID-2018:5 security advisory, the vulnerability is caused by an SNMP query rejection code memory leak which can lead to a DoS condition by allowing a potential remote attacker to "consume all memory available to the Squid process, causing it to crash."

Squid's developers have already fixed the issue in the Squid 4.4 release, and they also provide patches addressing the bug for the Squid 3.5 and Squid 4 stable releases.

Source: https://news.softpedia.com/news/remote-d...3492.shtml
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
uBOLite 2026.705.2152 (already available...
uBOLite 2026.705.2...harlan4096 — 10:23
Microsoft Warns Windows 11 Enterprise De...
Microsoft has issu...harlan4096 — 10:22
QOwnNotes
26.7.1 Added a ne...Kool — 05:26
NanaZip 6.5 Update (6.5.1767.0)
NanaZip 6.5 Update...harlan4096 — 19:15
Microsoft Edge 150 Adds Google Account S...
Microsoft has adde...harlan4096 — 10:26

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
avatar (47)dapedDow
avatar (49)TromPerl
avatar (46)RidgeDimb
avatar (37)ipumaqar
avatar (51)tanliorsPeri
avatar (43)lapedDow
avatar (49)rituabew
avatar (37)omyjul
avatar (41)papedDow
avatar (50)ArnoldFum
avatar (38)yfaza
avatar (49)Kevensi
avatar (48)ConradRoand
avatar (39)boineDon
avatar (51)spoofTum
avatar (50)WillieVot
avatar (40)Grompelbawn
avatar (41)vkseogaF
avatar (37)usogy
avatar (40)ywixazok
avatar (38)ixoqe
avatar (56)Step 1
avatar (36)pa.OpenTran

[-]
Online Staff
harlan4096's profile harlan4096
Administrator

>