Buffer overflow in the gopherToHTML function in gopher.cc in the Gopher reply parser in Squid 3.0 before 3.0.STABLE26, 3.1 before 3.1.15, and 3.2 before 3.2.0.11 allows remote Gopher servers to cause a denial of service (memory corruption and daemon restart) or possibly have unspecified other impact via a long line in a response. NOTE: This issue exists because of a CVE-2005-0094 regression.
References
Link Providers
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065534.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00012.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00013.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html cve-icon cve-icon
http://openwall.com/lists/oss-security/2011/08/29/2 cve-icon cve-icon
http://openwall.com/lists/oss-security/2011/08/30/4 cve-icon cve-icon
http://openwall.com/lists/oss-security/2011/08/30/8 cve-icon cve-icon
http://secunia.com/advisories/45805 cve-icon cve-icon
http://secunia.com/advisories/45906 cve-icon cve-icon
http://secunia.com/advisories/45920 cve-icon cve-icon
http://secunia.com/advisories/45965 cve-icon cve-icon
http://secunia.com/advisories/46029 cve-icon cve-icon
http://securitytracker.com/id?1025981 cve-icon cve-icon
http://www.debian.org/security/2011/dsa-2304 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDVSA-2011:150 cve-icon cve-icon
http://www.osvdb.org/74847 cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2011-1293.html cve-icon cve-icon
http://www.securityfocus.com/bid/49356 cve-icon cve-icon
http://www.squid-cache.org/Advisories/SQUID-2011_3.txt cve-icon cve-icon
http://www.squid-cache.org/Versions/v2/2.HEAD/changesets/12710.patch cve-icon cve-icon
http://www.squid-cache.org/Versions/v3/3.0/changesets/squid-3.0-9193.patch cve-icon cve-icon
http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10363.patch cve-icon cve-icon
http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11294.patch cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=734583 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2011-3205 cve-icon
https://www.cve.org/CVERecord?id=CVE-2011-3205 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2011-09-06T15:00:00

Updated: 2024-08-06T23:29:55.437Z

Reserved: 2011-08-19T00:00:00

Link: CVE-2011-3205

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2011-09-06T15:55:08.383

Modified: 2024-11-21T01:29:58.557

Link: CVE-2011-3205

cve-icon Redhat

Severity : Moderate

Publid Date: 2011-08-28T00:00:00Z

Links: CVE-2011-3205 - Bugzilla