Vulnerability Description
An issue was discovered in Squid 2.x, 3.x, and 4.x through 4.8. Due to incorrect data management, it is vulnerable to information disclosure when processing HTTP Digest Authentication. Nonce tokens contain the raw byte value of a pointer that sits within heap memory allocation. This information reduces ASLR protections and may aid attackers isolating memory areas to target for remote code execution attacks.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Squid-Cache | Squid | >= 2.0, <= 2.7 |
| Canonical | Ubuntu Linux | 16.04 |
| Debian | Debian Linux | 8.0 |
| Fedoraproject | Fedora | 30 |
Related Weaknesses (CWE)
References
- http://www.squid-cache.org/Advisories/SQUID-2019_11.txtThird Party Advisory
- http://www.squid-cache.org/Versions/v4/changesets/squid-4-671ba97abe929156dc4c71Release Notes
- https://bugzilla.suse.com/show_bug.cgi?id=1156324Issue TrackingThird Party Advisory
- https://github.com/squid-cache/squid/pull/491PatchThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2019/12/msg00011.htmlThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2020/07/msg00009.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.gentoo.org/glsa/202003-34
- https://usn.ubuntu.com/4213-1/Third Party Advisory
- https://www.debian.org/security/2020/dsa-4682
- http://www.squid-cache.org/Advisories/SQUID-2019_11.txtThird Party Advisory
- http://www.squid-cache.org/Versions/v4/changesets/squid-4-671ba97abe929156dc4c71Release Notes
- https://bugzilla.suse.com/show_bug.cgi?id=1156324Issue TrackingThird Party Advisory
- https://github.com/squid-cache/squid/pull/491PatchThird Party Advisory
FAQ
What is CVE-2019-18679?
CVE-2019-18679 is a vulnerability with a CVSS score of 7.5 (HIGH). An issue was discovered in Squid 2.x, 3.x, and 4.x through 4.8. Due to incorrect data management, it is vulnerable to information disclosure when processing HTTP Digest Authentication. Nonce tokens co...
How severe is CVE-2019-18679?
CVE-2019-18679 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-18679?
Check the references section above for vendor advisories and patch information. Affected products include: Squid-Cache Squid, Canonical Ubuntu Linux, Debian Debian Linux, Fedoraproject Fedora.