Nixpkgs security tracker
Untriaged
Permalink
CVE-2023-46848
8.6 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): CHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): HIGH
Squid: denial of service in ftp
Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input.
References
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
-
-
-
-
-
-
-
-
-
-
-
https://security.netapp.com/advisory/ntap-20231214-0005/ x_transferred
Affected products
squid
- *
- ==6.4
- <6.4
squid:4/squid
Package maintainers
-
@srhb Sarah Brofeldt <sbrofeldt@gmail.com>
-
@happysalada Raphael Megzari <raphael@megzari.com>
-
@7c6f434c Michael Raskin <7c6f434c@mail.ru>