mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
112 lines
4.4 KiB
JSON
112 lines
4.4 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2019-18677",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "An issue was discovered in Squid 3.x and 4.x through 4.8 when the append_domain setting is used (because the appended characters do not properly interact with hostname length restrictions). Due to incorrect message processing, it can inappropriately redirect traffic to origins it should not be delivered to."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://github.com/squid-cache/squid/pull/427",
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/squid-cache/squid/pull/427"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "https://bugzilla.suse.com/show_bug.cgi?id=1156328",
|
|
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1156328"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "http://www.squid-cache.org/Advisories/SQUID-2019_9.txt",
|
|
"url": "http://www.squid-cache.org/Advisories/SQUID-2019_9.txt"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "http://www.squid-cache.org/Versions/v4/changesets/squid-4-36492033ea4097821a4f7ff3ddcb971fbd1e8ba0.patch",
|
|
"url": "http://www.squid-cache.org/Versions/v4/changesets/squid-4-36492033ea4097821a4f7ff3ddcb971fbd1e8ba0.patch"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-e5f1813a674848dde570f7920873e1071f96e0b4.patch",
|
|
"url": "http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-e5f1813a674848dde570f7920873e1071f96e0b4.patch"
|
|
},
|
|
{
|
|
"refsource": "UBUNTU",
|
|
"name": "USN-4213-1",
|
|
"url": "https://usn.ubuntu.com/4213-1/"
|
|
},
|
|
{
|
|
"refsource": "FEDORA",
|
|
"name": "FEDORA-2019-0b16cbdd0e",
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UEMOYTMCCFWK5NOXSXEIH5D2VGWVXR67/"
|
|
},
|
|
{
|
|
"refsource": "FEDORA",
|
|
"name": "FEDORA-2019-9538783033",
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MTM74TU2BSLT5B3H4F3UDW53672NVLMC/"
|
|
},
|
|
{
|
|
"refsource": "MLIST",
|
|
"name": "[debian-lts-announce] 20191210 [SECURITY] [DLA 2028-1] squid3 security update",
|
|
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00011.html"
|
|
},
|
|
{
|
|
"refsource": "DEBIAN",
|
|
"name": "DSA-4682",
|
|
"url": "https://www.debian.org/security/2020/dsa-4682"
|
|
},
|
|
{
|
|
"refsource": "MLIST",
|
|
"name": "[debian-lts-announce] 20200710 [SECURITY] [DLA 2278-1] squid3 security update",
|
|
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00009.html"
|
|
}
|
|
]
|
|
}
|
|
} |