VDB

ALPINE-CVE-2020-8450

ALPINE-CVE-2020-8450 PUBLISHED CVSS 7.300000190734863 HIGH

An issue was discovered in Squid before 4.10. Due to incorrect buffer management, a remote client can cause a buffer overflow in a Squid instance acting as a reverse proxy.

Risk Scores

CVSS 3.1
7.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected Products

VendorProductVersions
Alpine:v3.11squid3.3.11-r1, 0, 4.9-r0
Alpine:v3.20squid3.2.0.19-r0, 3.2.0.19-r1, 2.7.9-r4
Alpine:v3.21squid0, 4.9-r0, 4.8-r1
Alpine:v3.9squid3.4.12-r0, 3.2.0.12-r3, 3.2.0.12-r2
Alpine:v3.8squid3.3.11-r0, 2.7.6-r9, 3.2.7-r2
Alpine:v3.23squid3.2.0.13-r0, 0, 2.7.6-r1
Alpine:v3.16squid2.7.6-r0, 0, 4.9-r0
Alpine:v3.14squid3.5.10-r0, 0, 2.7.6-r0
Alpine:v3.24squid0
Alpine:v3.10squid3.5.7-r0, 3.5.8-r0, 4.2-r0
Alpine:v3.19squid4.2-r0, 2.7.6-r12, 3.2.0.13-r0
Alpine:v3.12squid2.7.7-r1, 2.7.6-r9, 2.7.6-r8
Alpine:v3.22squid3.5.6-r1, 4.8-r0, 4.8-r1
Alpine:v3.17squid3.5.23-r3, 0, 4.9-r0
Alpine:v3.18squid2.7.6-r3, 0, 4.9-r0
Alpine:v3.13squid2.7.6-r6, 2.7.6-r7, 2.7.9-r1
Alpine:v3.15squid3.4.6-r1, 0, 4.9-r0

Timeline

  • Feb 4, 2020 CVE Published
  • Apr 30, 2026 Distribution Patch
  • Jun 15, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›