Published: 04/12/2023 Updated: 19/01/2024

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

DescriptionA flaw was found in Squid due to an incorrect check of the return value in the helper process management. This issue may allow malicious users to perform remote denial of service.A flaw was found in Squid due to an incorrect check of the return value in the helper process management. This issue may allow malicious users to perform remote denial of service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
squid-cache squid

Synopsis Important: squid:4 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the squid:4 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update a ...

Synopsis Important: squid security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for squid is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a secu ...

Synopsis Important: squid:4 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the squid:4 module is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Securi ...

Synopsis Important: squid:4 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the squid:4 module is now available for Red Hat Enterprise Linux 82 Advanced Update Support, Red Hat Enterprise Li ...

Synopsis Important: squid:4 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the squid:4 module is now available for Red Hat Enterprise Linux 84 Advanced Mission Critical Update Support, Red ...

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more Due to an Incorrect Check of Function Return Value bug Squid is vulnerable to a Denial of Service attack against its Helper process management This bug is fixed by Squid version 65 Users are advised to upgrade There are no known workarounds for this vulnerability (CVE- ...

DescriptionA flaw was found in Squid due to an incorrect check of the return value in the helper process management This issue may allow attackers to perform remote denial of serviceA flaw was found in Squid due to an incorrect check of the return value in the helper process management This issue may allow attackers to perform remote deni ...

CWE-754 CWE-617 https://github.com/squid-cache/squid/security/advisories/GHSA-xggx-9329-3c27 https://github.com/squid-cache/squid/commit/6014c6648a2a54a4ecb7f952ea1163e0798f9264 http://www.squid-cache.org/Versions/v6/SQUID-2023_8.patch https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MEV66D3PAAY6K7TWDT3WZBLCPLASFJDC/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A5QASTMCUSUEW3UOMKHZJB3FTONWSRXS/https://lists.debian.org/debian-lts-announce/2024/01/msg00003.html https://security.netapp.com/advisory/ntap-20240119-0004/https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2024:0046 https://alas.aws.amazon.com/AL2/ALAS-2024-2381.html https://access.redhat.com/security/cve/cve-2023-49286

CVE-2023-49286

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect