Vulnerability: OpenServer 5.0.6a: squid DNS answer message boundary failure

Caldera International has advised error and boundary conditions were not checked when handling compressed DNS answer messages in the internal DNS code, which could allow a malicious DNS server to craft a DNS reply that would cause Squid to exit with a SIGSEGV.

This vulnerability affects OpenServer version 5.0.6a.

For more information, go to:

http://www.squid-cache.org/Advisories/SQUID-2002_2.txt

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about CalderaCaldera International

Show Comments