The arrayShrink function (lib/Array.c) in Squid 2.6.STABLE17 allows attackers to cause a denial of service (process exit) via unknown vectors that cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an incorrect fix for CVE-2007-6239.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2008-04-01T17:00:00

Updated: 2024-08-07T08:24:43.052Z

Reserved: 2008-04-01T00:00:00

Link: CVE-2008-1612

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2008-04-01T17:44:00.000

Modified: 2024-11-21T00:44:55.503

Link: CVE-2008-1612

cve-icon Redhat

Severity : Moderate

Publid Date: 2008-03-22T00:00:00Z

Links: CVE-2008-1612 - Bugzilla