Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This bug is fixed in the default build configuration of Squid version 6.10.
References
Link | Resource |
---|---|
https://github.com/squid-cache/squid/security/advisories/GHSA-f975-v7qw-q7hj | Mitigation Third Party Advisory |
Configurations
History
05 Nov 2024, 16:45
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:* | |
References | () https://github.com/squid-cache/squid/security/advisories/GHSA-f975-v7qw-q7hj - Mitigation, Third Party Advisory | |
First Time |
Squid-cache
Squid-cache squid |
|
CWE | NVD-CWE-noinfo |
29 Oct 2024, 14:34
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
28 Oct 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-28 15:15
Updated : 2024-11-05 16:45
NVD link : CVE-2024-45802
Mitre link : CVE-2024-45802
CVE.ORG link : CVE-2024-45802
JSON object : View
Products Affected
squid-cache
- squid
CWE