VDB

GCVE-110-MAGEIA-2016-133

GCVE-110-MAGEIA-2016-133
Advisory Published
Vulnetix · Advisory published April 6, 2016
Updated squid packages fix security vulnerabilities: Due to a buffer overrun, the Squid pinger binary in Squid before 3.5.16 is vulnerable to a denial of service or information leak attack when processing ICMPv6 packets. This bug also permits the server response to manipulate other ICMP and ICMPv6 queries processing to cause information leaks (CVE-2016-3947). Due to incorrect bounds checking, Squid before 3.5.16 is vulnerable to a denial of service attack when processing HTTP responses (CVE-2016-3948).

Affected Products

VendorProductVersionsPlatforms
Mageiaguile0 (affected), 2.0.13-1.1.mga5 (unaffected)
Mageiasquid0 (affected), 3.5.16-1.mga5 (unaffected), 3.5.16-1.mga5 (unaffected), 0 (affected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›