Total vulnerabilities in the database
The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in 3.0 before 3.0.STABLE24, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets to the HTCP port.
| Software | From | Fixed in |
|---|---|---|
| squid-cache / squid | 3.0.stable13 | 3.0.stable13.x |
| squid-cache / squid | 2.6 | 2.6.x |
| squid-cache / squid | 3.0.stable9 | 3.0.stable9.x |
| squid-cache / squid | 2.0 | 2.0.x |
| squid-cache / squid | 3.0.stable20 | 3.0.stable20.x |
| squid-cache / squid | 3.0.stable14 | 3.0.stable14.x |
| squid-cache / squid | 3.0.stable3 | 3.0.stable3.x |
| squid-cache / squid | 3.0.stable4 | 3.0.stable4.x |
| squid-cache / squid | 2.7-stable3 | 2.7-stable3.x |
| squid-cache / squid | 2.2 | 2.2.x |
| squid-cache / squid | 3.0.stable16 | 3.0.stable16.x |
| squid-cache / squid | 2.3 | 2.3.x |
| squid-cache / squid | 2.7-stable4 | 2.7-stable4.x |
| squid-cache / squid | 3.0.stable18 | 3.0.stable18.x |
| squid-cache / squid | 3.0.stable1 | 3.0.stable1.x |
| squid-cache / squid | 3.0.stable6 | 3.0.stable6.x |
| squid-cache / squid | 3.0.stable15 | 3.0.stable15.x |
| squid-cache / squid | 2.5 | 2.5.x |
| squid-cache / squid | 3.0.stable5 | 3.0.stable5.x |
| squid-cache / squid | 3.0.stable21 | 3.0.stable21.x |
| squid-cache / squid | 3.0.stable17 | 3.0.stable17.x |
| squid-cache / squid | 3.0.stable11 | 3.0.stable11.x |
| squid-cache / squid | 2.1 | 2.1.x |
| squid-cache / squid | 2.4 | 2.4.x |
| squid-cache / squid | 3.0.stable8 | 3.0.stable8.x |
| squid-cache / squid | 3.0.stable12 | 3.0.stable12.x |
| squid-cache / squid | 3.0.stable23 | 3.0.stable23.x |
| squid-cache / squid | 2.7 | 2.7.x |
| squid-cache / squid | 3.0.stable22 | 3.0.stable22.x |
| squid-cache / squid | 3.0.stable2 | 3.0.stable2.x |
| squid-cache / squid | 3.0.stable7 | 3.0.stable7.x |
| squid-cache / squid | 3.0 | 3.0.x |
| squid-cache / squid | 3.0.stable19 | 3.0.stable19.x |