Due to an incorrect memory management bug Squid is vulnerable to a Denial of Service attack against all clients using the proxy. External Reference: https://github.com/squid-cache/squid/security/advisories/GHSA-pxwq-f3qr-w2xf
Created squid tracking bugs for this issue: Affects: fedora-all [bug 1962598]
Upstream pull request: https://github.com/squid-cache/squid/pull/790 Upstream commits: https://github.com/squid-cache/squid/commit/7024fb734a59409889e53df2257b3fc817809fb4 [master] https://github.com/squid-cache/squid/commit/6bf66733c122804fada7f5839ef5f3b57e57591c [v5] https://github.com/squid-cache/squid/commit/e7cf864f938f24eea8af0692c04d16790983c823 [v4]
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:4292 https://access.redhat.com/errata/RHSA-2021:4292
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-31807