6.8

CVE-2011-3205

Buffer overflow in the gopherToHTML function in gopher.cc in the Gopher reply parser in Squid 3.0 before 3.0.STABLE26, 3.1 before 3.1.15, and 3.2 before 3.2.0.11 allows remote Gopher servers to cause a denial of service (memory corruption and daemon restart) or possibly have unspecified other impact via a long line in a response.  NOTE: This issue exists because of a CVE-2005-0094 regression.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Squid-cacheSquid Version3.0.stable1
Squid-cacheSquid Version3.0.stable2
Squid-cacheSquid Version3.0.stable3
Squid-cacheSquid Version3.0.stable4
Squid-cacheSquid Version3.0.stable5
Squid-cacheSquid Version3.0.stable6
Squid-cacheSquid Version3.0.stable7
Squid-cacheSquid Version3.0.stable8
Squid-cacheSquid Version3.0.stable9
Squid-cacheSquid Version3.0.stable10
Squid-cacheSquid Version3.0.stable11
Squid-cacheSquid Version3.0.stable11 Updaterc1
Squid-cacheSquid Version3.0.stable12
Squid-cacheSquid Version3.0.stable13
Squid-cacheSquid Version3.0.stable14
Squid-cacheSquid Version3.0.stable15
Squid-cacheSquid Version3.0.stable16
Squid-cacheSquid Version3.0.stable16 Updaterc1
Squid-cacheSquid Version3.0.stable17
Squid-cacheSquid Version3.0.stable18
Squid-cacheSquid Version3.0.stable19
Squid-cacheSquid Version3.0.stable20
Squid-cacheSquid Version3.0.stable21
Squid-cacheSquid Version3.0.stable22
Squid-cacheSquid Version3.0.stable23
Squid-cacheSquid Version3.0.stable24
Squid-cacheSquid Version3.0.stable25
Squid-cacheSquid Version3.1
Squid-cacheSquid Version3.1.0.1
Squid-cacheSquid Version3.1.0.2
Squid-cacheSquid Version3.1.0.3
Squid-cacheSquid Version3.1.0.4
Squid-cacheSquid Version3.1.0.5
Squid-cacheSquid Version3.1.0.6
Squid-cacheSquid Version3.1.0.7
Squid-cacheSquid Version3.1.0.8
Squid-cacheSquid Version3.1.0.9
Squid-cacheSquid Version3.1.0.10
Squid-cacheSquid Version3.1.0.11
Squid-cacheSquid Version3.1.0.12
Squid-cacheSquid Version3.1.0.13
Squid-cacheSquid Version3.1.0.14
Squid-cacheSquid Version3.1.0.15
Squid-cacheSquid Version3.1.0.16
Squid-cacheSquid Version3.1.0.17
Squid-cacheSquid Version3.1.0.18
Squid-cacheSquid Version3.1.1
Squid-cacheSquid Version3.1.2
Squid-cacheSquid Version3.1.3
Squid-cacheSquid Version3.1.4
Squid-cacheSquid Version3.1.5
Squid-cacheSquid Version3.1.5.1
Squid-cacheSquid Version3.1.6
Squid-cacheSquid Version3.1.7
Squid-cacheSquid Version3.1.8
Squid-cacheSquid Version3.1.9
Squid-cacheSquid Version3.1.10
Squid-cacheSquid Version3.1.11
Squid-cacheSquid Version3.1.12
Squid-cacheSquid Version3.1.13
Squid-cacheSquid Version3.1.14
Squid-cacheSquid Version3.2.0.1
Squid-cacheSquid Version3.2.0.2
Squid-cacheSquid Version3.2.0.3
Squid-cacheSquid Version3.2.0.4
Squid-cacheSquid Version3.2.0.5
Squid-cacheSquid Version3.2.0.6
Squid-cacheSquid Version3.2.0.7
Squid-cacheSquid Version3.2.0.8
Squid-cacheSquid Version3.2.0.9
Squid-cacheSquid Version3.2.0.10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 27.45% 0.978
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065534.html
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00012.html
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00013.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html
http://openwall.com/lists/oss-security/2011/08/29/2
http://openwall.com/lists/oss-security/2011/08/30/4
http://openwall.com/lists/oss-security/2011/08/30/8
http://secunia.com/advisories/45805
Vendor Advisory
http://secunia.com/advisories/45906
http://secunia.com/advisories/45920
http://secunia.com/advisories/45965
http://secunia.com/advisories/46029
http://securitytracker.com/id?1025981
http://www.debian.org/security/2011/dsa-2304
http://www.mandriva.com/security/advisories?name=MDVSA-2011:150
http://www.osvdb.org/74847
http://www.redhat.com/support/errata/RHSA-2011-1293.html
http://www.securityfocus.com/bid/49356
http://www.squid-cache.org/Advisories/SQUID-2011_3.txt
http://www.squid-cache.org/Versions/v2/2.HEAD/changesets/12710.patch
Patch
http://www.squid-cache.org/Versions/v3/3.0/changesets/squid-3.0-9193.patch
Patch
http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10363.patch
Patch
http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11294.patch
Patch
https://bugzilla.redhat.com/show_bug.cgi?id=734583
Patch