Due to an incorrect input validation bug Squid before version 4.15 is vulnerable to a denial of service attack against all clients using the proxy by a trusted client making HTTP Range requests.
Due to an incorrect input validation bug Squid before version 4.15 is vulnerable to a denial of service attack against all clients using the proxy by a trusted client making HTTP Range requests.
https://github.com/squid-cache/squid/security/advisories/GHSA-pxwq-f3qr-w2xf http://www.squid-cache.org/Versions/v4/changesets/squid-4-e7cf864f938f24eea8af0692c04d16790983c823.patch