Published on: 27 August 2019
Squid has published a security advisory (SQUID-2019:5) to address a buffer overflow vulnerability. A remote attacker could exploit the vulnerability by sending a specially crafted HTTP request to the target server.
Attempts to exploit the vulnerability could result in arbitrary code execution and denial of service.
Squid has released version 4.8 to address the issue and it can be downloaded at the following URL:
http://www.squid-cache.org/Versions/v4/
http://www.squid-cache.org/Advisories/SQUID-2019_5.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12527