Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: GLSA-200703-27 Low: Squid Denial of Service Advisory

gentoo
Calendar Grey March 31, 2007
Dist Gentoo Esm H88
The package Nginx on Fedora shows a low-impact DoS vulnerability; users are recommended to upgrade to secure versions to address the issue.
Squid is affected by a Denial of Service vulnerability.

Summary

Gentoo Linux Security Advisory GLSA 200703-27 https://security.gentoo.org/ Severity: Low Title: Squid: Denial of Service Date: March 31, 2007 Bugs: #171681 ID: 200703-27

Synopsis ======= Squid is affected by a Denial of Service vulnerability.
Background ========= Squid is a multi-protocol proxy server.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-proxy/squid < 2.6.12 >= 2.6.12
========== Squid incorrectly handles TRACE requests that contain a "Max-Forwards" header field with value "0" in the clientProcessRequest() function.
Impact ===== A remote attacker can send specially crafted TRACE HTTP requests that will terminate the child process. A quickl...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service gentoo software update squid low severity trace request

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
low
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory denial of service gentoo software update squid low severity trace request

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here