Vulnerability: OpenServer 5.0.6a: squid DNS answer message boundary failure

Caldera International has advised error and boundary conditions were not checked when handling compressed DNS answer messages in the internal DNS code, which could allow a malicious DNS server to craft a DNS reply that would cause Squid to exit with a SIGSEGV.

This vulnerability affects OpenServer version 5.0.6a.

For more information, go to:

http://www.squid-cache.org/Advisories/SQUID-2002_2.txt

Join the newsletter!

Error: Please check your email address.

More about CalderaCaldera International

Show Comments

Market Place