Vulnerability in N/a
CVE-2020-8450
An issue was discovered in Squid before 4.10. Due to incorrect buffer management, a remote client can cause a buffer overflow in a Squid instance acting as a reverse proxy.
EPSS: 0.718 (99.3th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.squid-cache.org/Advisories/SQUID-2020_1.txt (x_refsource_MISC)
- www.squid-cache.org/Versions/v4/changesets/squid-4-d8e4715992d0e530871519549add… (x_refsource_MISC)
- www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-8e657e835965c3a011375f… (x_refsource_MISC)
- www.squid-cache.org/Versions/v4/changesets/squid-4-b3a0719affab099c684f1cd62b79… (x_refsource_MISC)
- www.squid-cache.org/Versions/v4/changesets/SQUID-2020_1.patch (x_refsource_MISC)
- www.squid-cache.org/Versions/v3/3.5/changesets/SQUID-2020_1.patch (x_refsource_MISC)
- USN-4289-1 (vendor-advisory, x_refsource_UBUNTU)
- openSUSE-SU-2020:0307 (vendor-advisory, x_refsource_SUSE)
- GLSA-202003-34 (vendor-advisory, x_refsource_GENTOO)
- FEDORA-2020-ab8e7463ab (vendor-advisory, x_refsource_FEDORA)