Debian Security Advisory 5637-1

Debian Linux Security Advisory 5637-1 - Several security vulnerabilities have been discovered in Squid, a full featured web proxy cache. Due to programming errors in Squid's HTTP request parsing, remote attackers may be able to execute a denial of service attack by sending large X-Forwarded-For header or trigger a stack buffer overflow while performing HTTP Digest authentication. Other issues facilitate request smuggling past a firewall or a denial of service against Squid's Helper process management.

advisory attack attackers buffer buffer overflow cache debian debian linux security denial of service denial of service attack digest errors featured header http large linux linux security may overflow parsing performing programming proxy request security security advisory service squid stack trigger vulnerabilities web x-forwarded-for