CVE-2019-12529 — MEDIUM (5.9)

Q: How severe is CVE-2019-12529?

CVE-2019-12529 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-12529?

Check the references section above for vendor advisories and patch information. Affected products include: Squid-Cache Squid, Debian Debian Linux, Fedoraproject Fedora, Opensuse Leap, Canonical Ubuntu Linux.

Vulnerability Description

An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the Proxy-Authorization header is parsed via uudecode. uudecode determines how many bytes will be decoded by iterating over the input and checking its table. The length is then used to start decoding the string. There are no checks to ensure that the length it calculates isn't greater than the input buffer. This leads to adjacent memory being decoded as well. An attacker would not be able to retrieve the decoded data unless the Squid maintainer had configured the display of usernames on error pages.

CVSS Score

5.9

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Squid-Cache	Squid	>= 2.0, < 2.7
Debian	Debian Linux	8.0
Fedoraproject	Fedora	29
Opensuse	Leap	15.0
Canonical	Ubuntu Linux	12.04

Related Weaknesses (CWE)

CWE-125

References

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00053.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00056.htmlMailing ListThird Party Advisory
http://www.squid-cache.org/Versions/v4/changesets/Vendor Advisory
http://www.squid-cache.org/Versions/v4/changesets/squid-4-dd46b5417809647f561d8aPatchVendor Advisory
https://github.com/squid-cache/squid/commits/v4PatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2019/07/msg00018.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2020/07/msg00009.htmlMailing ListThird Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://seclists.org/bugtraq/2019/Aug/42Mailing ListThird Party Advisory
https://usn.ubuntu.com/4065-1/Third Party Advisory
https://usn.ubuntu.com/4065-2/Third Party Advisory
https://www.debian.org/security/2019/dsa-4507Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00053.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00056.htmlMailing ListThird Party Advisory
http://www.squid-cache.org/Versions/v4/changesets/Vendor Advisory

FAQ

What is CVE-2019-12529?

CVE-2019-12529 is a vulnerability with a CVSS score of 5.9 (MEDIUM). An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the Proxy-Authorization header is parsed via uu...

How severe is CVE-2019-12529?

CVE-2019-12529 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-12529?

Check the references section above for vendor advisories and patch information. Affected products include: Squid-Cache Squid, Debian Debian Linux, Fedoraproject Fedora, Opensuse Leap, Canonical Ubuntu Linux.