Test Kennung:	1.3.6.1.4.1.25623.1.0.142628
Kategorie:	Denial of Service
Titel:	Squid Security Update Advisory SQUID-2018:5
Zusammenfassung:	Squid is prone to a denial of service vulnerability due to a memory leak; in the SNMP query rejection code.
Beschreibung:	Summary: Squid is prone to a denial of service vulnerability due to a memory leak in the SNMP query rejection code. Vulnerability Insight: This problem allows a remote attacker to consume all memory available to the Squid process, causing it to crash. In environments where per-process memory restrictions are not enforced strictly, or configured to large values this may also affect other processes operating on the same machine. Leading to a much worse denial of service situation. This problem is limited to Squid built with SNMP support and receiving SNMP traffic. Affected Software/OS: Squid versions 3.2.0.10 - 3.5.28, 4.x - 4.3. Solution: Update to version 4.4 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-19132 http://www.squid-cache.org/Advisories/SQUID-2018_5.txt http://www.squid-cache.org/Versions/v5/changesets/squid-5-644131ff1e00c1895d77561f561d29c104ba6b11.patch https://github.com/squid-cache/squid/pull/313 https://lists.debian.org/debian-lts-announce/2018/11/msg00032.html https://lists.debian.org/debian-lts-announce/2020/07/msg00009.html https://usn.ubuntu.com/4059-1/
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.