DSA-2040-1 squidguard -- buffer overflowID: oval:org.secpod.oval:def:600064 | Date: (C)2011-01-28 (M)2022-10-10 |
Class: PATCH | Family: unix |
It was discovered that in squidguard, a URL redirector/filter/ACL plugin for squid, several problems in src/sgLog.c and src/sgDiv.c allow remote users to either: * cause a denial of service, by requesting long URLs containing many slashes; this forces the daemon into emergency mode, where it does not process requests anymore. * bypass rules by requesting URLs whose length is close to predefined buffer limits, in this case 2048 for squidguard and 4096 or 8192 for squid . For the stable distribution , this problem has been fixed in version 1.2.0-8.4+lenny1. For the unstable distribution , this problem has been fixed in version 1.2.0-9. We recommend that you upgrade your squidguard package.