Bugzilla – Bug 1189403
VUL-0: CVE-2021-28116: squid,squid3: out-of-bounds read in WCCP protocol data may lead to information disclosure
Last modified: 2022-10-16 16:21:50 UTC
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Squid Cache. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the WCCP protocol. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the "nobody" user. https://www.zerodayinitiative.com/advisories/ZDI-21-157/ https://github.com/squid-cache/squid/security/advisories/GHSA-rgf3-9v3p-qp82
i dont see any wccp changes in the timeframe in squid git currently. likely unfixed upstream?
Advisory is now published and we have patched 4.x and 5.x versions. https://github.com/squid-cache/squid/security/advisories/GHSA-rgf3-9v3p-qp82 Also seems that Bug #1182041 and Bug #1182042 are duplicates of this advisory.
*** Bug 1182042 has been marked as a duplicate of this bug. ***
*** Bug 1182041 has been marked as a duplicate of this bug. ***
This is an autogenerated message for OBS integration: This bug (1189403) was mentioned in https://build.opensuse.org/request/show/923558 Factory / squid
SUSE-SU-2021:3334-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1189403 CVE References: CVE-2021-28116 JIRA References: Sources used: SUSE Linux Enterprise Server 12-SP5 (src): squid-4.17-4.21.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:3485-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1189403 CVE References: CVE-2021-28116 JIRA References: Sources used: SUSE Linux Enterprise Module for Server Applications 15-SP3 (src): squid-4.17-5.29.1 SUSE Linux Enterprise Module for Server Applications 15-SP2 (src): squid-4.17-5.29.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
openSUSE-SU-2021:3485-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1189403 CVE References: CVE-2021-28116 JIRA References: Sources used: openSUSE Leap 15.3 (src): squid-4.17-5.29.1
openSUSE-SU-2021:1419-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1189403 CVE References: CVE-2021-28116 JIRA References: Sources used: openSUSE Leap 15.2 (src): squid-4.17-lp152.2.12.1