CVE-2021-46784

CVSS v3.1 6.5 (Medium)

EPSS 1.99 % (89^th)

Affected Products 2

Advisories 20

In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses.

Weaknesses

CWE-617: Reachable Assertion

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2022-07-17 22:15:08
(2 years ago)
Updated Date: 2023-10-22 00:15:08
(11 months ago)

Affected Products

Debian

Debian Linux

Squid-cache

Squid

Configuration #1

	CPE23	From	Up To
Squid-cache Squid from 3.0 version and 3.5.28 and prior versions	cpe:2.3:a:squid-cache:squid	>= 3.0	<= 3.5.28
Squid-cache Squid from 4.0 version and 4.17 and prior versions	cpe:2.3:a:squid-cache:squid	>= 4.0	<= 4.17
Squid-cache Squid from 5.0 version and prior 5.6 version	cpe:2.3:a:squid-cache:squid	>= 5.0	< 5.6

Configuration #2

		CPE23	From	Up To
	Debian Linux 10.0	cpe:2.3:o:debian:debian_linux:10.0
	Debian Linux 11.0	cpe:2.3:o:debian:debian_linux:11.0
	Debian Linux 12.0	cpe:2.3:o:debian:debian_linux:12.0