rpm package
opensuse/squidGuard&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/squidGuard&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8936 | Med | 6.1 | < 1.6.0-1.4 | 1.6.0-1.4 | Feb 9, 2017 | Cross-site scripting (XSS) vulnerability in squidGuard.cgi in squidGuard before 1.5 allows remote attackers to inject arbitrary web script or HTML via a blocked site link. | |
| CVE-2009-3826 | — | < 1.4-27.7 | 1.4-27.7 | Oct 28, 2009 | Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to (1) the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and (2) a redirect URL that contains information about | ||
| CVE-2009-3700 | — | < 1.4-27.7 | 1.4-27.7 | Oct 28, 2009 | Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service (application hang or loss of blocking functionality) via a long URL with many / (slash) characters, related to "emergency mode." |
- affected < 1.6.0-1.4fixed 1.6.0-1.4
Cross-site scripting (XSS) vulnerability in squidGuard.cgi in squidGuard before 1.5 allows remote attackers to inject arbitrary web script or HTML via a blocked site link.
- CVE-2009-3826Oct 28, 2009affected < 1.4-27.7fixed 1.4-27.7
Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to (1) the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and (2) a redirect URL that contains information about
- CVE-2009-3700Oct 28, 2009affected < 1.4-27.7fixed 1.4-27.7
Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service (application hang or loss of blocking functionality) via a long URL with many / (slash) characters, related to "emergency mode."