CVE-2018-19132 (retired)

Priority
Description
Squid before 4.4, when SNMP is enabled, allows a denial of service (Memory
Leak) via an SNMP packet.
Notes
 mdeslaur> snmp port is disabled by default in Ubuntu
Assigned-to
mdeslaur
Package
Source: squid (LP Ubuntu Debian)
Upstream:released (4.4)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 18.10 (Cosmic Cuttlefish):ignored (reached end-of-life)
Ubuntu 19.04 (Disco Dingo):not-affected (4.4-1ubuntu2)
Ubuntu 19.10 (Eoan):not-affected (4.6-2ubuntu1)
Patches:
Upstream:http://www.squid-cache.org/Versions/v4/changesets/squid-4-983c5c36e5f109512ed1af38a329d0b5d0967498.patch
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (code not present)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):released (3.5.12-1ubuntu7.7)
Ubuntu 18.04 LTS (Bionic Beaver):released (3.5.27-1ubuntu1.2)
Ubuntu 18.10 (Cosmic Cuttlefish):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Patches:
Upstrem:http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-bc9786119f058a76ddf0625424bc33d36460b9a2.patch
More Information

Updated: 2019-07-17 12:14:58 UTC (commit 3f4ba215ff6d4198b8a95da19f30d7033df032c8)