Squid 'STORE_PENDING' Race Condition May Let Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1014864
|
|
SecurityTracker URL: http://securitytracker.com/id?1014864
|
|
CVE Reference: CAN-2005-2794
(Links to External Site)
|
Updated: Sep 15 2005
|
Original Entry Date: Sep 7 2005
|
Impact: Denial of service via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): 2.5 and prior versions
|
Description: A vulnerability was reported in Squid in the processing of aborted requests. A remote user can cause denial of service conditions.
Under certain conditions, a remote user can send aborted requests to trigger a vulnerability in 'store.c' and cause Squid to crash with a "e->store_status == STORE_PENDING" assertion failure.
Nickolay reported this vulnerability.
|
Impact: A remote user can cause Squid to crash.
|
Solution: The vendor has issued a fix (squid-2.5.STABLE10-STORE_PENDING.patch), available at:
http://www.squid-cache.org/Versions/v2/2.5/bugs/squid-2.5.STABLE10-STORE_PENDING.pat
ch
Red Hat has issued a fix for Red Hat Enterprise Linux 2.1, 3, and 4:
https://rhn.redhat.com/errata/RHSA-2005-766.html
|
Vendor URL: www.squid-cache.org/ (Links to External Site)
|
Cause: State error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Wed, 7 Sep 2005 08:38:20 -0400
Subject: Squid vulnerability
|
assertion failed: store.c:523: "e->store_status == STORE_PENDING"
synopsis Squid crashes with the above assertion failure in certain conditions involving aborted requ
ests.
severity Major
date 2005-09-01 22:44
bugzilla #1368
versions Squid-2.5 and earlier
platforms All
patch squid-2.5.STABLE10-STORE_PENDING.patch
http://www.squid-cache.org/Versions/v2/2.5/bugs/squid-2.5.STABLE10-STORE_PENDING.patch
|
|
