Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.
History
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2023-11-03T07:58:05.641Z

Updated: 2024-11-23T02:54:24.031Z

Reserved: 2023-10-27T08:36:38.158Z

Link: CVE-2023-46847

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-11-03T08:15:08.023

Modified: 2024-11-21T08:29:25.000

Link: CVE-2023-46847

cve-icon Redhat

Severity : Critical

Publid Date: 2023-10-19T00:00:00Z

Links: CVE-2023-46847 - Bugzilla