vulnerability

Ubuntu: (Multiple Advisories) (CVE-2019-12854): Squid vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Aug 15, 2019	Dec 5, 2019	Apr 16, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Aug 15, 2019

Added

Dec 5, 2019

Modified

Apr 16, 2026

Description

Due to incorrect string termination, Squid cachemgr.cgi 4.0 through 4.7 may access unallocated memory. On systems with memory access protections, this can cause the CGI process to terminate unexpectedly, resulting in a denial of service for all clients using it.

Solutions

ubuntu-upgrade-squidubuntu-upgrade-squid3

References

CVE-2019-12854
https://attackerkb.com/topics/CVE-2019-12854
DEBIAN-DSA-4507
EUVD-EUVD-2019-4434
NVD-CVE-2019-12854
UBUNTU-USN-4213-1
UBUNTU-USN-4446-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2019-4434

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report