cbcvebase.
CVE-2019-12529
published 2019-07-11

CVE-2019-12529: An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the…

PriorityP340medium5.9CVSS 3.1
AVNACHPRNUINSUCHINAN
EPSS
8.09%
94.1th percentile
An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the Proxy-Authorization header is parsed via uudecode. uudecode determines how many bytes will be decoded by iterating over the input and checking its table. The length is then used to start decoding the string. There are no checks to ensure that the length it calculates isn't greater than the input buffer. This leads to adjacent memory being decoded as well. An attacker would not be able to retrieve the decoded data unless the Squid maintainer had configured the display of usernames on error pages.

Affected

19 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debiandebian_linux
debiansquid< squid 4.8-1 (bookworm)squid 4.8-1 (bookworm)
fedoraprojectfedora
opensuseleap
opensuseleap
squid-cachesquid
squid-cachesquid>= 2.0 < 2.72.7
squid-cachesquid3.0 – 3.5.28
squid-cachesquid4.0 – 4.7
squidsquid>= 0 < 4.8-14.8-1
squidsquid>= 0 < 4.8-14.8-1
squidsquid>= 0 < 4.8-14.8-1
squidsquid>= 0 < 4.8-14.8-1

CVSS provenance

nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_debian5.9MEDIUM
vendor_redhat5.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.