Vulnerabilities

CVE-2016-2571

by Fred · 26/02/2016

http.cc in Squid 3.x before 3.5.15 and 4.x before 4.0.7 proceeds with the storage of certain data after a response-parsing failure, which allows remote HTTP servers to cause a denial of service (assertion failure and daemon exit) via a malformed response.

Date published : 2016-02-26

http://www.squid-cache.org/Advisories/SQUID-2016_2.txt

http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13990.patch

Related

Tags: Cybersecurity Alert