CVE-2023-49286

Name

CVE-2023-49286

Description

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Incorrect Check of Function Return Value bug Squid is vulnerable to a Denial of Service attack against its Helper process management. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no known workarounds for this vulnerability.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
security-advisories@github.com	http://www.squid-cache.org/Versions/v6/SQUID-2023_8.patch
security-advisories@github.com	https://github.com/squid-cache/squid/commit/6014c6648a2a54a4ecb7f952ea1163e0798f9264
security-advisories@github.com	https://github.com/squid-cache/squid/security/advisories/GHSA-xggx-9329-3c27
security-advisories@github.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A5QASTMCUSUEW3UOMKHZJB3FTONWSRXS/
security-advisories@github.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MEV66D3PAAY6K7TWDT3WZBLCPLASFJDC/
security-advisories@github.com	https://lists.debian.org/debian-lts-announce/2024/01/msg00003.html
security-advisories@github.com	https://security.netapp.com/advisory/ntap-20240119-0004/

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:squid-cache:squid::::::::`	squid	>= None	<= 6.4

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
squid	edge-main	6.5-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
squid	edge-main	6.4-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
squid	edge-main	6.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
squid	edge-main	5.7-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
squid	edge-main	5.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
squid	edge-main	5.0.6-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
squid	edge-main	5.0.5-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
squid	edge-main	4.13.0-r0	None	possibly vulnerable
squid	edge-main	4.12.0-r0	None	possibly vulnerable
squid	edge-main	4.10-r0	None	possibly vulnerable
squid	edge-main	4.9-r0	None	possibly vulnerable
squid	edge-main	4.8-r0	None	possibly vulnerable
squid	edge-main	3.5.27-r2	None	possibly vulnerable
squid	3.22-main	6.5-r0	None	fixed
squid	3.22-main	6.4-r0	None	possibly vulnerable
squid	3.22-main	6.1-r0	None	possibly vulnerable
squid	3.22-main	5.7-r0	None	possibly vulnerable
squid	3.22-main	5.2-r0	None	possibly vulnerable
squid	3.22-main	5.0.6-r0	None	possibly vulnerable
squid	3.22-main	5.0.5-r0	None	possibly vulnerable
squid	3.22-main	4.13.0-r0	None	possibly vulnerable
squid	3.22-main	4.12.0-r0	None	possibly vulnerable
squid	3.22-main	4.10-r0	None	possibly vulnerable
squid	3.22-main	4.9-r0	None	possibly vulnerable
squid	3.22-main	4.8-r0	None	possibly vulnerable
squid	3.22-main	3.5.27-r2	None	possibly vulnerable
squid	3.21-main	6.5-r0	None	fixed
squid	3.21-main	6.4-r0	None	possibly vulnerable
squid	3.21-main	6.1-r0	None	possibly vulnerable
squid	3.21-main	5.7-r0	None	possibly vulnerable
squid	3.21-main	5.2-r0	None	possibly vulnerable
squid	3.21-main	5.0.6-r0	None	possibly vulnerable
squid	3.21-main	5.0.5-r0	None	possibly vulnerable
squid	3.21-main	4.13.0-r0	None	possibly vulnerable
squid	3.21-main	4.12.0-r0	None	possibly vulnerable
squid	3.21-main	4.10-r0	None	possibly vulnerable
squid	3.21-main	4.9-r0	None	possibly vulnerable
squid	3.21-main	4.8-r0	None	possibly vulnerable
squid	3.21-main	3.5.27-r2	None	possibly vulnerable
squid	3.20-main	6.5-r0	None	fixed
squid	3.20-main	6.4-r0	None	possibly vulnerable
squid	3.20-main	6.1-r0	None	possibly vulnerable
squid	3.20-main	5.7-r0	None	possibly vulnerable
squid	3.20-main	5.2-r0	None	possibly vulnerable
squid	3.20-main	5.0.6-r0	None	possibly vulnerable
squid	3.20-main	5.0.5-r0	None	possibly vulnerable
squid	3.20-main	4.13.0-r0	None	possibly vulnerable
squid	3.20-main	4.12.0-r0	None	possibly vulnerable
squid	3.20-main	4.10-r0	None	possibly vulnerable
squid	3.20-main	4.9-r0	None	possibly vulnerable
squid	3.20-main	4.8-r0	None	possibly vulnerable
squid	3.20-main	3.5.27-r2	None	possibly vulnerable
squid	3.19-main	6.5-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
squid	3.19-main	6.4-r0	None	possibly vulnerable
squid	3.19-main	6.1-r0	None	possibly vulnerable
squid	3.19-main	5.7-r0	None	possibly vulnerable
squid	3.19-main	5.2-r0	None	possibly vulnerable
squid	3.19-main	5.0.6-r0	None	possibly vulnerable
squid	3.19-main	5.0.5-r0	None	possibly vulnerable
squid	3.19-main	4.13.0-r0	None	possibly vulnerable
squid	3.19-main	4.12.0-r0	None	possibly vulnerable
squid	3.19-main	4.10-r0	None	possibly vulnerable
squid	3.19-main	4.9-r0	None	possibly vulnerable
squid	3.19-main	4.8-r0	None	possibly vulnerable
squid	3.19-main	3.5.27-r2	None	possibly vulnerable
squid	3.18-main	5.9-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
squid	3.17-main	5.7-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable