CVE-2019-12521 log

Severity High
Remote Yes
Type Content spoofing
A heap-based out-of-bounds write has been found in Squid before 4.11 or 5.0.2., where a crafted ESI response sent from an upstream server can truncate portions of generated payloads, poisoning the HTTP response cache with corrupted objects. On systems with heap overflow protection overflow will shutdown the proxy causing a denial of service for all clients accessing the Squid service.
Group Package Affected Fixed Severity Status Ticket
AVG-1146 squid 4.10-2 4.12-1 Critical Fixed