First Last Prev Next    This bug is not in your last search results.
Bug 34299 - squid3: Denial of service (3.2)
squid3: Denial of service (3.2)
Status: RESOLVED DUPLICATE of bug 35853
Product: UCS
Classification: Unclassified
Component: Squid
UCS 3.2
Other Linux
: P3 normal (vote)
: UCS 3.2-x-errata
Assigned To: Squid maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2014-03-11 06:38 CET by Moritz Muehlenhoff
Modified: 2015-08-17 16:41 CEST (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Moritz Muehlenhoff univentionstaff 2014-03-11 06:38:58 CET 
+++ This bug was initially created as a clone of Bug #34298 +++

CVE-2014-0128

Squid provides a feature to transparently decrypt/analyse SSL/TLS traffuic (called SSL bumping). This feature is susceptible by denial of service through malformed HTTPS requests.

The affected feature isn't enabled in the templates in univention-squid.
Comment 1 Arvid Requate univentionstaff 2015-08-17 16:41:06 CEST 

*** This bug has been marked as a duplicate of bug 35853 ***
First Last Prev Next    This bug is not in your last search results.