Your submission was sent successfully! Close

CVE-2010-3072

Published: 20 September 2010

The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.

Priority

Medium

Status

Package Release Status
squid
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

squid3
Launchpad, Ubuntu, Debian
Upstream
Released (3.1.6-1.1)