VDB

DEBIAN-CVE-2019-12854

DEBIAN-CVE-2019-12854 PUBLISHED CVSS 7.5 HIGH

Due to incorrect string termination, Squid cachemgr.cgi 4.0 through 4.7 may access unallocated memory. On systems with memory access protections, this can cause the CGI process to terminate unexpectedly, resulting in a denial of service for all clients using it.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:14squid0, 0, 0
Debiansquid
Debian:11squid0, 0, 0
Debian:13squid0, 0, 0
Debian:12squid0, 0, 0

Timeline

  • Aug 15, 2019 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›