CVE-2020-8517

Related Files

Gentoo Linux Security Advisory 202003-34

Posted Mar 16, 2020

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202003-34 - Multiple vulnerabilities have been found in Squid, the worst of which could lead to arbitrary code execution. Versions less than 4.10 are affected.

tags | advisory, arbitrary, vulnerability, code execution

systems | linux, gentoo

advisories | CVE-2019-12526, CVE-2019-12528, CVE-2019-18678, CVE-2019-18679, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517

SHA-256 | 75240e0416b3fb5f8be101638fda3295dca71eb0dee0fffeb95657098130ceb0

Download | Favorite | View

Ubuntu Security Notice USN-4289-1

Posted Feb 20, 2020

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4289-1 - Jeriko One discovered that Squid incorrectly handled memory when connected to an FTP server. A remote attacker could possibly use this issue to obtain sensitive information from Squid memory. Regis Leroy discovered that Squid incorrectly handled certain HTTP requests. A remote attacker could possibly use this issue to access server resources prohibited by earlier security filters. Guido Vranken discovered that Squid incorrectly handled certain buffer operations when acting as a reverse proxy. A remote attacker could use this issue to cause Squid to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, web, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2019-12528, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517

SHA-256 | 1313e86585d39f29af765e7595c60e6ae63b933823da6dd69399de2b01187107

Download | Favorite | View