Vulnerability in Squid-cache Squid
CVE-2011-4096
The idnsGrokReply function in Squid before 3.1.16 does not properly free memory, which allows remote attackers to cause a denial of service (daemon abort) via a DNS reply containing a CNAME record that references another CNAME record that…
EPSS: 0.625 (98.4th percentile) — read the EPSS interpretation.
Affected products
- Squid-cache Squid — versions 3.0, 3.0.stable1, 3.0.stable2
- N/a — versions n/a
Weakness classification (CWE)
References
- secalert@redhat.com (x_refsource_MISC)
- RHSA-2011:1791 (x_refsource_REDHAT, vendor-advisory)
- SUSE-SU-2016:1996 (vendor-advisory, x_refsource_SUSE)
- [oss-security] 20111031 CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record (mailing-list, x_refsource_MLIST)
- 1026265 (vdb-entry, x_refsource_SECTRACK)
- [oss-security] 20111031 Re: CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record (mailing-list, x_refsource_MLIST)
- MDVSA-2011:193 (vendor-advisory, x_refsource_MANDRIVA)
- 46609 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_CONFIRM)
- SUSE-SU-2016:2089 (vendor-advisory, x_refsource_SUSE)