Unrated severityNVD Advisory· Published Apr 1, 2008· Updated Apr 23, 2026
CVE-2008-1612
CVE-2008-1612
Description
The arrayShrink function (lib/Array.c) in Squid 2.6.STABLE17 allows attackers to cause a denial of service (process exit) via unknown vectors that cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an incorrect fix for CVE-2007-6239.
Affected products
1- cpe:2.3:a:squid:squid:2.6.stable17:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
19- www.squid-cache.org/Advisories/SQUID-2007_2.txtnvdPatch
- www.squid-cache.org/Versions/v2/2.6/changesets/11882.patchnvdExploit
- lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.htmlnvd
- marc.infonvd
- secunia.com/advisories/27477nvd
- secunia.com/advisories/29813nvd
- secunia.com/advisories/30032nvd
- secunia.com/advisories/32109nvd
- secunia.com/advisories/34467nvd
- security.gentoo.org/glsa/glsa-200903-38.xmlnvd
- www.debian.org/security/2008/dsa-1646nvd
- www.mandriva.com/security/advisoriesnvd
- www.openwall.com/lists/oss-security/2008/04/01/5nvd
- www.redhat.com/support/errata/RHSA-2008-0214.htmlnvd
- www.securityfocus.com/bid/28693nvd
- www.ubuntu.com/usn/usn-601-1nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41586nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11376nvd
- www.redhat.com/archives/fedora-package-announce/2008-April/msg00560.htmlnvd
News mentions
0No linked articles in our index yet.