Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-5824HistoryNov 03, 2023 - 8:15 a.m.
CVE-2023-5824
2023-11-0308:15:08
Debian Security Bug Tracker
security-tracker.debian.org
21
squid
cve-2023-5824
dos
vulnerability
http
https
clients
improper handling
structural elements
unix
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
9.2
Confidence
High
EPSS
0.005
Percentile
76.6%
Squid is vulnerable to Denial of Service attack against HTTP and HTTPS clients due to an Improper Handling of Structural Elements bug.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | squid | <= 5.7-2+deb12u2 | squid_5.7-2+deb12u2_all.deb |
| Debian | 11 | all | squid | <= 4.13-10+deb11u3 | squid_4.13-10+deb11u3_all.deb |
| Debian | 999 | all | squid | < 6.5-1 | squid_6.5-1_all.deb |
| Debian | 13 | all | squid | < 6.5-1 | squid_6.5-1_all.deb |
Related
redhat
redhat
(RHSA-2023:7465) Important: squid security update
2023-11-22 16:59:46
(RHSA-2023:7668) Important: squid:4 security update
2023-12-06 09:41:55
(RHSA-2024:0072) Important: squid security update
2024-01-08 07:56:48
osv
osv
Important: squid:4 security update
2023-12-06 00:00:00
Important: squid security update
2023-11-22 00:00:00
Important: squid:4 security update
2023-12-06 23:16:33
nessus
nessus
AlmaLinux 9 : squid (ALSA-2023:7465)
2023-11-23 00:00:00
Oracle Linux 8 : squid:4 (ELSA-2023-7668)
2023-12-11 00:00:00
RHEL 9 : squid (RHSA-2023:7465)
2023-11-22 00:00:00
ubuntucve
ubuntucve
CVE-2023-5824
2023-11-03 00:00:00
CVE-2023-49288
2023-12-04 00:00:00
almalinux
almalinux
Important: squid security update
2023-11-22 00:00:00
Important: squid:4 security update
2023-12-06 00:00:00
rocky
rocky
squid:4 security update
2023-12-06 23:16:33
prion
prion
Design/Logic Flaw
2023-11-03 08:15:00
nvd
nvd
CVE-2023-5824
2023-11-03 08:15:08
oraclelinux
oraclelinux
squid:4 security update
2023-12-11 00:00:00
squid security update
2023-11-28 00:00:00
redhatcve
redhatcve
CVE-2023-5824
2023-10-27 09:56:59
alpinelinux
alpinelinux
CVE-2023-5824
2023-11-03 08:15:08
cve
cve
CVE-2023-5824
2023-11-03 08:15:08
openvas
openvas
Squid Multiple DoS Vulnerabilities (GHSA-543m-w2m2-g255, SQUID-2023:2)
2023-10-20 00:00:00
Mageia: Security Advisory (MGASA-2024-0126)
2024-04-15 00:00:00
Ubuntu: Security Advisory (USN-6728-3)
2024-04-24 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-11-12 03:39:36
cvelist
cvelist
CVE-2023-5824 Squid: dos against http and https
2023-11-03 07:56:36
mageia
mageia
Updated squid packages fix security vulnerabilities
2024-04-12 23:45:19
photon
photon
Important Photon OS Security Update - PHSA-2024-3.0-0751
2024-04-18 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0520
2023-11-24 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0154
2023-11-24 00:00:00
redos
redos
ROS-20231115-01
2023-11-15 00:00:00
ubuntu
ubuntu
Squid regression
2024-04-11 00:00:00
Squid vulnerability
2024-04-23 00:00:00
Squid vulnerabilities
2024-04-10 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
9.2
Confidence
High
EPSS
0.005
Percentile
76.6%
Related for DEBIANCVE:CVE-2023-5824