Description
Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 does not properly enforce "buffer limits and related bound checks," which allows remote attackers to cause a denial of service via (1) an incomplete request or (2) a request with a large header size, related to (a) HttpMsg.cc and (b) client_side.cc.
Remediation
References
Related Vulnerabilities
WordPress Plugin iQ Block Country Unspecified Vulnerability (1.1.33)
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5241)
Sqlite Use After Free Vulnerability (CVE-2019-5018)
Chamilo Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-1999019)
Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-35652)