Debian Squid vulnerabilities

CVE-2002-0916 [HIGH] CVE-2002-0916: squid - Format string vulnerability in the allowuser code for the Stellar-X msntauth aut... Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and earlier, allows remote attackers to execute arbitrary code via format strings in the user name, which are not properly handled in a syslog call. Scope: local bookworm: resolved (fixed in 2.4.7) bullseye: resolved (fixed in 2.4.7) fo

CVE-2002-0715 [MEDIUM] CVE-2002-0715: squid - Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication creden... Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password. Scope: local bookworm: resolved (fixed in 2.4.6-2) bullseye: resolved (fixed in 2.4.6-2) forky: resolved (fixed in 2.4.6-2) sid: resolved (fixed in 2.4.6-2) trixie: resolved (fixed in 2.4.6-2)

CVE-2002-0735 [HIGH] CVE-2002-0735: squid - Format string vulnerability in the logging() function in C-Note Squid LDAP authe... Format string vulnerability in the logging() function in C-Note Squid LDAP authentication module (squid_auth_LDAP) 2.0.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code by triggering log messages. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-1999-0710 [HIGH] CVE-1999-0710: squid - The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, install... The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems. Scope: local bookworm: resolved (fixed in 2.5.7-1) bullseye: resolved (fixed in 2.5.7-1) forky: resolved (fixed in 2.5.7-1) sid: resolved (fixed in 2.5.7-1) trixi