Vulnerability CVE-2018-19132: Information
Description
Squid before 4.4, when SNMP is enabled, allows a denial of service (Memory Leak) via an SNMP packet.
Severity: MEDIUM (5.9) Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| squid | sisyphus | 4.4-alt1 | 6.8-alt1 | ALT-PU-2018-2718-1 | 217034 | Fixed |
| squid | p10 | 4.4-alt1 | 6.6-alt1 | ALT-PU-2018-2718-1 | 217034 | Fixed |
| squid | p9 | 4.4-alt1 | 4.13-alt1 | ALT-PU-2018-2718-1 | 217034 | Fixed |
| squid | p8 | 3.5.28-alt1 | 3.5.28-alt1 | ALT-PU-2019-2542-1 | 236485 | Fixed |
| squid | c10f1 | 4.4-alt1 | 6.6-alt1 | ALT-PU-2018-2718-1 | 217034 | Fixed |
| squid | c9f2 | 4.4-alt1 | 4.15-alt1 | ALT-PU-2018-2718-1 | 217034 | Fixed |
| squid | p11 | 4.4-alt1 | 6.8-alt1 | ALT-PU-2018-2718-1 | 217034 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
|---|---|
| https://github.com/squid-cache/squid/pull/313 |
|
| http://www.squid-cache.org/Versions/v5/changesets/squid-5-644131ff1e00c1895d77561f561d29c104ba6b11.patch |
|
| http://www.squid-cache.org/Advisories/SQUID-2018_5.txt |
|
| [debian-lts-announce] 20181126 [SECURITY] [DLA 1596-1] squid3 security update |
|
| USN-4059-1 | |
| [debian-lts-announce] 20200710 [SECURITY] [DLA 2278-1] squid3 security update |