Debian: DLA-2028-1 Critical: Squid3 HTTP Request Smuggling Issues
debian lts
December 10, 2019
It was found that Squid, a high-performance proxy caching server for web clients, has been affected by the following security vulnerabilities
Summary
URN response handling in Squid suffers from a heap-based buffer
overflow. When receiving data from a remote server in response to
an URN request, Squid fails to ensure that the response can fit
within the buffer. This leads to attacker controlled data
overflowing in the heap.
CVE-2019-18677
When the append_domain setting is used (because the appended
characters do not properly interact with hostname length
restrictions), it can inappropriately redirect traffic to origins
it should not be delivered to. This happens because of incorrect
message processing.
CVE-2019-18678
A programming error allows attackers to smuggle HTTP requests
through frontend software to a Squid instance that splits the HTTP
Request pipeline differently. The resulting Response messages
corrupt caches (between a client and Squid) with
attacker-controlled content at arbitrary URLs. Effects are isolated
to software between the attacker client and Squid.
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Package: squid3
Version: 3.4.8-6+deb8u9
CVE ID: CVE-2019-12526 CVE-2019-18677 CVE-2019-18678
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!