Squid: dos against http and https
CVE-2023-5824

7.5HIGH

Key Information:

Vendor

Red Hat
Status
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 8.2 Advanced Update Support
Red Hat Enterprise Linux 8.2 Telecommunications Update Service
Red Hat Enterprise Linux 8.2 Update Services For SAP Solutions
Vendor
CVE Published:
3 November 2023

What is CVE-2023-5824?

A flaw exists in the Squid caching proxy server that may permit an attacker to exploit limits meant for validating HTTP response headers. During caching operations, these limits are bypassed, potentially allowing a cached HTTP response header to exceed its maximum size. This can lead to a stall or crash of the worker process when a large header is accessed from the disk cache, resulting in a denial of service and affecting the server's normal operation.

Affected Version(s)

Red Hat Enterprise Linux 8 8090020231130092412.a75119d5

Red Hat Enterprise Linux 8.2 Advanced Update Support 8020020240122164331.4cda2c84

Red Hat Enterprise Linux 8.2 Telecommunications Update Service 8020020240122164331.4cda2c84

References

https://access.redhat.com/errata/RHSA-2023:7465
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:7668
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0072
vendor-advisoryx_refsource_REDHAT

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.