CVE-2024-37894 Information

Description

Squid is a caching proxy for the Web supporting HTTP HTTPS FTP and more. Due to an Out-of-bounds Write error when assigning ESI variables Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack.

Reference

https://github.com/squid-cache/squid/security/advisories/GHSA-wgvf-q977-9xjg https://github.com/squid-cache/squid/commit/f411fe7d75197852f0e5ee85027a06d58dd8df4c.patch