CVE-2023-5824: Squid: dos against http and https
First published: Tue Oct 24 2023(Updated: )
Description: a) Due to an Improper Handling of Structural Elements bug Squid is vulnerable to a Denial of Service attack against HTTP and HTTPS clients. b) Due to an Incomplete Filtering of Special Elements bug Squid is vulnerable to a Denial of Service attack against HTTP and HTTPS clients. Reference: <a href="https://github.com/squid-cache/squid/security/advisories/GHSA-543m-w2m2-g255">https://github.com/squid-cache/squid/security/advisories/GHSA-543m-w2m2-g255</a> Affected versions: < 6.4
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/squid | <6.4 | 6.4 |
| Squid-Cache Squid | <6.4 | |
| Redhat Enterprise Linux | =6.0 | |
| Redhat Enterprise Linux | =7.0 | |
| Redhat Enterprise Linux | =8.0 | |
| Redhat Enterprise Linux | =9.0 | |
| debian/squid | <=4.6-1+deb10u7<=4.6-1+deb10u10<=4.13-10+deb11u2<=4.13-10+deb11u3<=5.7-2<=5.7-2+deb12u1 | 6.6-1 6.9-1 |
| ubuntu/squid | <4.10-1ubuntu1.12 | 4.10-1ubuntu1.12 |
| ubuntu/squid | <5.7-0ubuntu0.22.04.4 | 5.7-0ubuntu0.22.04.4 |
| ubuntu/squid | <6.1-2ubuntu1.3 | 6.1-2ubuntu1.3 |
| ubuntu/squid | <6.5-1ubuntu1 | 6.5-1ubuntu1 |
| ubuntu/squid | <6.5 | 6.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/squid-cache/squid/security/advisories/GHSA-543m-w2m2-g255
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2245915
- https://access.redhat.com/errata/RHSA-2023:7465
- https://access.redhat.com/errata/RHSA-2023:7668
- https://access.redhat.com/errata/RHSA-2024:0072
- https://access.redhat.com/errata/RHSA-2024:0397
- https://access.redhat.com/errata/RHSA-2024:0772
- https://access.redhat.com/errata/RHSA-2024:0773
- https://access.redhat.com/errata/RHSA-2024:0771
- https://access.redhat.com/errata/RHSA-2024:1153
- https://bugzilla.redhat.com/show_bug.cgi?id=2245914
- https://access.redhat.com/security/cve/CVE-2023-5824
- https://security.netapp.com/advisory/ntap-20231130-0003/
- https://launchpad.net/bugs/cve/CVE-2023-5824
- https://security-tracker.debian.org/tracker/CVE-2023-5824
- https://lists.squid-cache.org/pipermail/squid-announce/2023-October/000155.html
- https://megamansec.github.io/Squid-Security-Audit/cache-headers.html
- https://ubuntu.com/security/notices/USN-6728-1
- https://ubuntu.com/security/notices/USN-6728-2
- https://www.cve.org/CVERecord?id=CVE-2023-5824
- https://ubuntu.com/security/notices/USN-6728-3
- https://nvd.nist.gov/vuln/detail/CVE-2023-5824
- https://github.com/squid-cache/squid/commit/a27bf4b84da23594150c7a86a23435df0b35b988
- https://github.com/squid-cache/squid/commit/57acdb7dcec38605ede048db82b495ba316e6311
- https://github.com/squid-cache/squid/commit/2f3efe5d9e1c9444cb3f95fc09cbbf52985f37bf
- https://github.com/squid-cache/squid/commit/18209199f8c330176401eac7ef2deb06ca4389b9
- https://git.rockylinux.org/staging/rpms/squid/-/blob/r9/SOURCES/squid-5.5-CVE-2023-5824.patch
- https://git.rockylinux.org/staging/rpms/squid/-/blob/r8-stream-4/SOURCES/squid-4.15-CVE-2023-5824.patch
- https://ubuntu.com/security/CVE-2023-5824
Frequently Asked Questions
What is the vulnerability ID for this Squid vulnerability?
The vulnerability ID for this Squid vulnerability is CVE-2023-5824.
What is the title of this vulnerability?
The title of this vulnerability is 'Squid: dos against http and https'.
What is the description of this vulnerability?
The description of this vulnerability is 'Squid is vulnerable to Denial of Service attack against HTTP and HTTPS clients due to an Improper Handling of Structural Elements bug.'
What is the severity rating of this vulnerability?
The severity rating of this vulnerability is critical (9.6).
What software is affected by this vulnerability?
The affected software is Squid version up to (but not including) 6.4, Redhat Enterprise Linux versions 6.0 to 9.0.
Where can I find more information about this vulnerability?
More information about this vulnerability can be found at the following references: [1](https://access.redhat.com/security/cve/CVE-2023-5824), [2](https://bugzilla.redhat.com/show_bug.cgi?id=2245914), [3](https://github.com/squid-cache/squid/security/advisories/GHSA-543m-w2m2-g255).
- agent/type
- agent/first-publish-date
- agent/title
- agent/severity
- agent/weakness
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-5824
- agent/software-canonical-lookup
- agent/remedy
- agent/description
- collector/launchpad-cve
- source/Launchpad
- collector/security-tracker-debian
- source/Debian
- collector/nvd-cve
- source/NVD
- agent/author
- agent/event
- agent/references
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- agent/last-modified-date
- collector/usn-cve
- source/Ubuntu
- package-manager/redhat
- package-manager/debian
- vendor/squid-cache
- canonical/squid-cache squid
- vendor/redhat
- canonical/redhat enterprise linux
- version/redhat enterprise linux/6.0
- version/redhat enterprise linux/7.0
- version/redhat enterprise linux/8.0
- version/redhat enterprise linux/9.0
- package-manager/ubuntu