Bug 509895

Summary: squid DoS in external auth header parser
Product: [Other] Security Response Reporter: Vincent Danen <vdanen>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED DUPLICATE QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: jskala, mbacovsk
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-08-24 14:26:00 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Vincent Danen 2009-07-06 17:49:04 UTC 
A DoS condition in squid was reported [1] in the Debian bug tracker where certain headers using defined delimiters (such as ','), and used by either external authentication or access log formats that include parts of the headers with delimiters, could cause squid to crash.  Configuration details and gdb output is included in the Debian bug.

[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534982
Comment 1 Vincent Danen 2009-07-13 17:32:12 UTC 
This is now noted upstream:

http://www.squid-cache.org/bugs/show_bug.cgi?id=2704

No additional information or response from upstream as of yet.
Comment 3 Vincent Danen 2009-08-24 14:26:00 UTC 
This is CVE-2009-2855.

*** This bug has been marked as a duplicate of bug 518182 ***