NIXPKGS-2025-0021

published on 29 Oct 2025

Permalink CVE-2023-46847

updated 3 months ago by @Erethon Activity log

Created automatic suggestion 6 months ago
@Erethon accepted 3 months ago
@Erethon published on GitHub 3 months ago

Squid: denial of service in http digest authentication

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.

Affected products

squid

==6.4
*
<6.4

squid34

squid:4

Matching in nixpkgs

pkgs.squid

Caching proxy for the Web supporting HTTP, HTTPS, FTP, and more

nixos-unstable 7.0.1
- nixpkgs-unstable 7.0.1
- nixos-unstable-small 7.0.1
nixos-25.05 -
- nixos-25.05-small 7.0.1

pkgs.prometheus-squid-exporter

Squid Prometheus exporter

nixos-unstable 1.13.0
- nixpkgs-unstable 1.13.0
- nixos-unstable-small 1.13.0
nixos-25.05 -
- nixos-25.05-small 1.13.0

pkgs.python311Packages.flyingsquid

More interactive weak supervision with FlyingSquid

nixos-unstable 0.0.0a0
- nixpkgs-unstable 0.0.0a0
- nixos-unstable-small 0.0.0a0

pkgs.python312Packages.flyingsquid

More interactive weak supervision with FlyingSquid

nixos-unstable 0.0.0a0
- nixpkgs-unstable 0.0.0a0
- nixos-unstable-small 0.0.0a0
nixos-25.05 -
- nixos-25.05-small 0.0.0a0

pkgs.python313Packages.flyingsquid

More interactive weak supervision with FlyingSquid

nixos-unstable 0.0.0a0
- nixpkgs-unstable 0.0.0a0
- nixos-unstable-small 0.0.0a0
nixos-25.05 -
- nixos-25.05-small 0.0.0a0

Package maintainers

@srhb Sarah Brofeldt <sbrofeldt@gmail.com>
@happysalada Raphael Megzari <raphael@megzari.com>
@7c6f434c Michael Raskin <7c6f434c@mail.ru>

Nixpkgs Security Tracker

Details of issue NIXPKGS-2025-0021

Affected products

Matching in nixpkgs

pkgs.squid

pkgs.prometheus-squid-exporter

pkgs.python311Packages.flyingsquid

pkgs.python312Packages.flyingsquid

pkgs.python313Packages.flyingsquid

Package maintainers