CVE-2008-1612

Priority
Description
The arrayShrink function (lib/Array.c) in Squid 2.6.STABLE17 allows
attackers to cause a denial of service (process exit) via unknown vectors
that cause an array to shrink to 0 entries, which triggers an assert error.
NOTE: this issue is due to an incorrect fix for CVE-2007-6239.
Assigned-to
jdstrand
Notes
Package
Source: squid (LP Ubuntu Debian)
Upstream:released (2.6.18-1)
Patches:
Other:http://www.squid-cache.org/Versions/v2/2.6/changesets/11882.patch
More Information

Updated: 2020-03-18 21:58:05 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)