An issue exists in Squid prior to 4.15 and 5.x prior to 5.0.6. Due to a buffer-management bug, it allows a denial of service. When resolving a request with the urn: scheme, the parser leaks a small amount of memory. However, there is an unspecified attack methodology that can easily trigger a large amount of memory consumption.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
squid-cache squid |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
netapp cloud manager - |