CVE-2004-2654 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Squid

5 documents5 sources

Severity

5.0MEDIUMNVD

EPSS

0.5%

top 33.66%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Squid Debian Squid

Timeline

PublishedDec 31

Latest updateApr 29

Description

The clientAbortBody function in client_side.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer overflow that was not fixed in STABLE6. However, the vendor's bug report clearly shows that the researcher later retracted this claim, because the tested product was actually STABLE5.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/squid< squid 2.5.6 (bookworm)

▶Debiansquid/squid< 2.5.6+3

▶NVDsquid/squid2.5_stable5

Patches

Patch: secunia.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-jxhx-rppc-gf4x: The clientAbortBody function in client_side↗2022-04-29

▶

OSV

CVE-2004-2654: The clientAbortBody function in client_side↗2004-12-31

▶

📋Vendor Advisories

Debian

CVE-2004-2654: squid - The clientAbortBody function in client_side.c in Squid Web Proxy Cache before 2....↗2004

▶

Red Hat

CVE-2004-2654: The clientAbortBody function in client_side↗

▶