---

CVE-2019-12519 - log back

CVE-2019-12519 edited at 30 Apr 2020 08:16:38
References	+ http://www.squid-cache.org/Advisories/SQUID-2019_12.txt http://www.squid-cache.org/Versions/v4/changesets/squid-4-fdd4123629320aa1ee4c3481bb392437c90d188d.patch

CVE-2019-12519 edited at 30 Apr 2020 08:16:06
Severity	- Unknown + High
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	+ A stack-based out-of-bounds write has been found in Squid before 4.11 or 5.0.2., where a crafted ESI response sent from an upstream server can overwrite arbitrary attacker controlled information onto the process stack.
References	+ http://www.squid-cache.org/Versions/v4/changesets/squid-4-fdd4123629320aa1ee4c3481bb392437c90d188d.patch
Notes

CVE-2019-12519 created at 30 Apr 2020 08:11:40