Gentoo: GLSA-200406-13 High: Squid NTLM Authentication Buffer Overflow
gentoo
June 17, 2004
Squid contains a bug where it fails to properly check bounds of the 'pass' variable.
Summary
Gentoo Linux Security Advisory GLSA 200406-13
https://security.gentoo.org/
Severity: High
Title: Squid: NTLM authentication helper buffer overflow
Date: June 17, 2004
Bugs: #53367
ID: 200406-13
Synopsis
=======
Squid contains a bug where it fails to properly check bounds of the
'pass' variable.
Background
=========
Squid contains a bug in the function ntlm_check_auth(). It fails to do
proper bounds checking on the values copyied to the 'pass' variable.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-www/squid <= 2.5.5-r1 >= 2.5.5-r2
==========
Squid is a full-featured Web Proxy Cache designed to run on Unix
systems. It supports proxying and caching of HTTP, FTP, and other URLs,
as well as...
Topics Covered
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Topics Covered
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!