Description:
Squid has published a security advisory (SQUID-2019:5) to address a buffer overflow vulnerability. A remote attacker could exploit the vulnerability by sending a specially crafted HTTP request to the target server.
Affected Systems:
Impact:
Attempts to exploit the vulnerability could result in arbitrary code execution and denial of service.
Recommendation:
Squid has released version 4.8 to address the issue and it can be downloaded at the following URL:
http://www.squid-cache.org/Versions/v4/
More Information:
http://www.squid-cache.org/Advisories/SQUID-2019_5.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12527