The arrayShrink function (lib/Array.c) in Squid 2.6.STABLE17 allows attackers to cause a denial of service (process exit) via unknown vectors that cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an incorrect fix for CVE-2007-6239.
References
Configurations
History
07 Nov 2023, 02:02
Type | Values Removed | Values Added |
---|---|---|
Summary | The arrayShrink function (lib/Array.c) in Squid 2.6.STABLE17 allows attackers to cause a denial of service (process exit) via unknown vectors that cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an incorrect fix for CVE-2007-6239. |
Information
Published : 2008-04-01 17:44
Updated : 2024-02-28 11:21
NVD link : CVE-2008-1612
Mitre link : CVE-2008-1612
CVE.ORG link : CVE-2008-1612
JSON object : View
Products Affected
squid
- squid
CWE
CWE-20
Improper Input Validation