CVE-2023-49288

04.12.2023, 23:15

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Affected versions of squid are subject to a a Use-After-Free bug which can lead to a Denial of Service attack via collapsed forwarding. All versions of Squid from 3.5 up to and including 5.9 configured with "collapsed_forwarding on" are vulnerable. Configurations with "collapsed_forwarding off" or without a "collapsed_forwarding" directive are not vulnerable. This bug is fixed by Squid version 6.0.1. Users are advised to upgrade. Users unable to upgrade should remove all collapsed_forwarding lines from their squid.conf.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 84%

Affected Products (NVD)

Vendor	Product	Version
squid-cache	squid	3.5 ≤ 𝑥 ≤ 5.9

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

squid

bookworm	ignored
bookworm (security)	vulnerable
bullseye	ignored
bullseye (security)	vulnerable
sid	6.12-1 fixed
trixie	6.12-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

squid

bionic	ignored
focal	Fixed 4.10-1ubuntu1.12 released
jammy	Fixed 5.7-0ubuntu0.22.04.4 released
lunar	ignored
mantic	not-affected
noble	not-affected
oracular	not-affected
trusty	ignored
xenial	ignored