Follow @discotekdotca
CVE-2019-18679
Current Description
An issue was discovered in Squid 2.x, 3.x, and 4.x through 4.8. Due to incorrect data management, it is vulnerable to information disclosure when processing HTTP Digest Authentication. Nonce tokens contain the raw byte value of a pointer that sits within heap memory allocation. This information reduces ASLR protections and may aid attackers isolating memory areas to target for remote code execution attacks.
Basic Data
| Published | November 26, 2019 |
|---|---|
| Last Modified | July 11, 2020 |
| Assigner | cve@mitre.org |
| Data Type | CVE |
| Data Format | MITRE |
| Data Version | 4.0 |
| Problem Type | CWE-200 |
| CVE Data Version | 4.0 |
Base Metric V2
| CVSS 2 - Version | 2.0 |
|---|---|
| CVSS 2 - Vector String | AV:N/AC:L/Au:N/C:P/I:N/A:N |
| CVSS 2 - Access Vector | NETWORK |
| CVSS 2 - Access Complexity | LOW |
| CVSS 2 - Authentication | NONE |
| CVSS 2 - Confidentiality Impact | PARTIAL |
| CVSS 2 - Availability Impact | NONE |
| CVSS 2 - Base Score | 5.0 |
| Severity | MEDIUM |
| Exploitability Score | 10.0 |
| Impact Score | 2.9 |
| Obtain All Privilege | false |
| Obtain User Privilege | false |
| Obtain Other Privilege | false |
Base Metric V3
No data provided.
Configurations
-
OR - Configuration 1
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 Application Squid-cache Squid * * * * * * * * 2.0 2.7 � � 2.3 Application Squid-cache Squid 2.7 stable2 * * * * * * � � � � 2.3 Application Squid-cache Squid 2.7 stable3 * * * * * * � � � � 2.3 Application Squid-cache Squid 2.7 stable4 * * * * * * � � � � 2.3 Application Squid-cache Squid 2.7 stable5 * * * * * * � � � � 2.3 Application Squid-cache Squid 2.7 stable6 * * * * * * � � � � 2.3 Application Squid-cache Squid 2.7 stable7 * * * * * * � � � � 2.3 Application Squid-cache Squid 2.7 stable8 * * * * * * � � � � 2.3 Application Squid-cache Squid 2.7 stable9 * * * * * * � � � � 2.3 Application Squid-cache Squid * * * * * * * * 3.0 3.5.28 � � 2.3 Application Squid-cache Squid * * * * * * * * 4.0 4.8 � � -
OR - Configuration 2
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 OS Canonical Ubuntu Linux 16.04 * * * lts * * * � � � � 2.3 OS Canonical Ubuntu Linux 18.04 * * * lts * * * � � � � 2.3 OS Canonical Ubuntu Linux 19.04 * * * * * * * � � � � 2.3 OS Canonical Ubuntu Linux 19.10 * * * * * * * � � � � -
OR - Configuration 3
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 OS Debian Debian Linux 8.0 * * * * * * * � � � � 2.3 OS Fedoraproject Fedora 30 * * * * * * * � � � � 2.3 OS Fedoraproject Fedora 31 * * * * * * * � � � �
Vulnerable Software List
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | 8.0 |
| Canonical | Ubuntu Linux | 16.04, 18.04, 19.04, 19.10 |
| Squid-cache | Squid | *, 2.7 |
| Fedoraproject | Fedora | 30, 31 |
References
| Name | Source | URL | Tags |
|---|---|---|---|
| http://www.squid-cache.org/Advisories/SQUID-2019_11.txt | http://www.squid-cache.org/Advisories/SQUID-2019_11.txt | CONFIRM | Third Party Advisory |
| http://www.squid-cache.org/Versions/v4/changesets/squid-4-671ba97abe929156dc4c717ee52ad22fba0f7443.patch | http://www.squid-cache.org/Versions/v4/changesets/squid-4-671ba97abe929156dc4c717ee52ad22fba0f7443.p | CONFIRM | Release Notes |
| https://bugzilla.suse.com/show_bug.cgi?id=1156324 | https://bugzilla.suse.com/show_bug.cgi?id=1156324 | CONFIRM | Issue Tracking Third Party Advisory |
| https://github.com/squid-cache/squid/pull/491 | https://github.com/squid-cache/squid/pull/491 | MISC | Patch Third Party Advisory |
| [debian-lts-announce] 20191210 [SECURITY] [DLA 2028-1] squid3 security update | https://lists.debian.org/debian-lts-announce/2019/12/msg00011.html | MLIST | Third Party Advisory |
| [debian-lts-announce] 20200710 [SECURITY] [DLA 2278-1] squid3 security update | https://lists.debian.org/debian-lts-announce/2020/07/msg00009.html | MLIST | |
| FEDORA-2019-9538783033 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MTM74 | FEDORA | Mailing List Third Party Advisory |
| FEDORA-2019-0b16cbdd0e | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UEMOY | FEDORA | Mailing List Third Party Advisory |
| GLSA-202003-34 | https://security.gentoo.org/glsa/202003-34 | GENTOO | |
| USN-4213-1 | https://usn.ubuntu.com/4213-1/ | UBUNTU | Third Party Advisory |
| DSA-4682 | https://www.debian.org/security/2020/dsa-4682 | DEBIAN |