CVE-2021-28662

CVE-2021-28662

Name

CVE-2021-28662

Description

An issue was discovered in Squid 4.x before 4.15 and 5.x before 5.0.6. If a remote server sends a certain response header over HTTP or HTTPS, there is a denial of service. This header can plausibly occur in benign network traffic.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	http://www.squid-cache.org/Versions/v6/changesets/squid-6-051824924c709bd6162a378f746fb859454c674e.patch
MISC	https://github.com/squid-cache/squid/security/advisories/GHSA-jjq6-mh2h-g39h
MISC	https://github.com/squid-cache/squid/commit/051824924c709bd6162a378f746fb859454c674e
DEBIAN	https://www.debian.org/security/2021/dsa-4924
FEDORA	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T4EPIWUZDJAXADDHVOPKRBTQHPBR6H66/
FEDORA	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LSQ3U54ZCNXR44QRPW3AV2VCS6K3TKCF/

Type

URI

MISC

http://www.squid-cache.org/Versions/v6/changesets/squid-6-051824924c709bd6162a378f746fb859454c674e.patch

MISC

https://github.com/squid-cache/squid/security/advisories/GHSA-jjq6-mh2h-g39h

MISC

https://github.com/squid-cache/squid/commit/051824924c709bd6162a378f746fb859454c674e

DEBIAN

https://www.debian.org/security/2021/dsa-4924

FEDORA

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T4EPIWUZDJAXADDHVOPKRBTQHPBR6H66/