Squid Products Multiple Vulnerabilities

Release Date: 11 May 2021 4713 Views

RISK: Medium Risk

TYPE: Servers - Internet App Servers

Multiple vulnerabilities were identified in Squid Products, a remote user could exploit some of these vulnerabilities to trigger denial of service condition and bypass security restriction on the targeted system.

Impact

Denial of Service
Security Restriction Bypass

System / Technologies affected

Squid versions 1.x to 5.0.x

For detail, please refer to links below:

http://lists.squid-cache.org/pipermail/squid-announce/2021-May/000129.html
http://lists.squid-cache.org/pipermail/squid-announce/2021-May/000130.html
http://lists.squid-cache.org/pipermail/squid-announce/2021-May/000131.html
http://lists.squid-cache.org/pipermail/squid-announce/2021-May/000132.html
http://lists.squid-cache.org/pipermail/squid-announce/2021-May/000133.html

Solutions

Before installation of the software, please visit the official vendor web-site for more details.

Apply fixes issued by the vendor:
Squid 4.15
Squid 5.0.6

Squid Products Multiple Vulnerabilities

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Source

Related Link