QwikSec

Security Database

CVE

CWE

Training

CVE-2011-4096

Published: Nov 17, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

The idnsGrokReply function in Squid before 3.1.16 does not properly free memory, which allows remote attackers to cause a denial of service (daemon abort) via a DNS reply containing a CNAME record that references another CNAME record that contains an empty A record.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://bugs.squid-cache.org/show_bug.cgi?id=3237#c12

x_refsource_MISC

vendor-advisory

x_refsource_REDHAT

SUSE-SU-2016:1996

vendor-advisory

x_refsource_SUSE

[oss-security] 20111031 CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_SECTRACK

[oss-security] 20111031 Re: CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_MANDRIVA

third-party-advisory

x_refsource_SECUNIA

http://www.squid-cache.org/Versions/v3/3.1/changesets/SQUID_3_1_16.html

x_refsource_CONFIRM

SUSE-SU-2016:2089

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.