BID:12551

Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability

Info

Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability

Bugtraq ID:	12551
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2005-0446
Remote:	Yes
Local:	No
Published:	Feb 14 2005 12:00AM
Updated:	Dec 20 2006 09:32PM
Credit:	This vulnerability was announced by the vendor.
Vulnerable:	Ubuntu Ubuntu Linux 4.1 ppc Ubuntu Ubuntu Linux 4.1 ia64 Ubuntu Ubuntu Linux 4.1 ia32 Squid Web Proxy Cache 2.5 .STABLE8 + Gentoo Linux + Redhat Fedora Core3 + Redhat Fedora Core2 + Ubuntu Ubuntu Linux 5.0 4 powerpc + Ubuntu Ubuntu Linux 5.0 4 i386 + Ubuntu Ubuntu Linux 5.0 4 amd64 Squid Web Proxy Cache 2.5 .STABLE7 + Gentoo Linux + Redhat Fedora Core3 + Redhat Fedora Core2 Squid Web Proxy Cache 2.5 .STABLE6 + Mandriva Linux Mandrake 10.1 x86_64 + S.u.S.E. Linux Personal 9.2 x86_64 + S.u.S.E. Linux Personal 9.2 + Turbolinux Appliance Server 1.0 Workgroup Edition + Turbolinux Appliance Server 1.0 Hosting Edition + Turbolinux Appliance Server Hosting Edition 1.0 + Turbolinux Appliance Server Workgroup Edition 1.0 + Turbolinux Turbolinux Server 10.0 + Turbolinux Turbolinux Server 8.0 + Turbolinux Turbolinux Server 7.0 + Turbolinux Turbolinux Workstation 8.0 + Turbolinux Turbolinux Workstation 7.0 Squid Web Proxy Cache 2.5 .STABLE5 + S.u.S.E. Linux Personal 9.1 x86_64 + S.u.S.E. Linux Personal 9.1 + Trustix Secure Linux 2.1 + Trustix Secure Linux 2.0 + Ubuntu Ubuntu Linux 4.1 ppc + Ubuntu Ubuntu Linux 4.1 ia64 + Ubuntu Ubuntu Linux 4.1 ia32 Squid Web Proxy Cache 2.5 .STABLE4 + MandrakeSoft Corporate Server 3.0 + Mandriva Linux Mandrake 10.0 AMD64 + Mandriva Linux Mandrake 10.0 + OpenPKG OpenPKG 2.0 + OpenPKG OpenPKG Current Squid Web Proxy Cache 2.5 .STABLE3 + Mandriva Linux Mandrake 9.2 amd64 + Mandriva Linux Mandrake 9.2 + OpenPKG OpenPKG 1.3 + Redhat Desktop 3.0 + Redhat Enterprise Linux AS 3 + Redhat Enterprise Linux ES 3 + Redhat Enterprise Linux WS 3 + Redhat Fedora Core1 + S.u.S.E. Linux Personal 9.0 x86_64 + S.u.S.E. Linux Personal 9.0 Squid Web Proxy Cache 2.5 .STABLE1 + Mandriva Linux Mandrake 9.1 ppc + Mandriva Linux Mandrake 9.1 + S.u.S.E. Linux Personal 8.2 SGI ProPack 3.0 Redhat Linux 9.0 i386 Redhat Linux 7.3 i386 Redhat Fedora Core2 Redhat Fedora Core1 Redhat Enterprise Linux ES 2.1 IA64 Redhat Enterprise Linux ES 2.1 Redhat Enterprise Linux AS 2.1 IA64 Redhat Enterprise Linux AS 2.1 Redhat Application Server WS 3 Redhat Advanced Workstation for the Itanium Processor 2.1 IA64 Redhat Advanced Workstation for the Itanium Processor 2.1

Not Vulnerable:

Discussion

Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability

A remote denial-of-service vulnerability is reported to exist in Squid. The issue is reported to present itself when the affected server performs a Fully Qualify Domain Name (FQDN) lookup and receives an unexpected response.

The vendor reports that under the above circumstances, the affected service will crash due to an assertion error, effectively denying service to legitimate users.

Exploit / POC

Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Solution / Fix

Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability

Solution:
Please see the referenced vendor advisories for more information and fixes.

Squid Web Proxy Cache 2.5 .STABLE6

Fedora squid-2.5.STABLE8-1.FC3.1.i386.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

Fedora squid-2.5.STABLE8-1.FC3.1.x86_64.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

Fedora squid-debuginfo-2.5.STABLE8-1.FC3.1.i386.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

Fedora squid-debuginfo-2.5.STABLE8-1.FC3.1.x86_64.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

Mandrake squid-2.5.STABLE6-2.4.101mdk.x86_64.rpm
Mandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php

Squid squid-2.5.STABLE8-dns_assert.patch
http://downloads.securityfocus.com/vulnerabilities/patches/squid-2.5.S TABLE8-dns_assert.patch

SuSE squid-2.5.STABLE6-6.8.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/squid-2.5.STABLE6 -6.8.i586.rpm

SuSE squid-2.5.STABLE6-6.8.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/squid-2.5.STA BLE6-6.8.x86_64.rpm

TurboLinux squid-2.5.STABLE6-20.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/up dates/RPMS/squid-2.5.STABLE6-20.i586.rpm

TurboLinux squid-debug-2.5.STABLE6-20.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/up dates/RPMS/squid-debug-2.5.STABLE6-20.i586.rpm

Squid Web Proxy Cache 2.5 .STABLE4

Mandrake squid-2.5.STABLE4-2.5.100mdk.amd64.rpm
Mandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php

Mandrake squid-2.5.STABLE4-2.5.100mdk.i586.rpm
Mandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php

Mandrake squid-2.5.STABLE4-2.5.C30mdk.i586.rpm
Mandrake Corporate Server 3.0
http://www.mandrakesecure.net/en/ftp.php

Mandrake squid-2.5.STABLE4-2.5.C30mdk.x86_64.rpm
Mandrake Corporate Server 3.0/x86_64
http://www.mandrakesecure.net/en/ftp.php

Squid Web Proxy Cache 2.5 .STABLE1

RedHat squid-2.5.STABLE1-9.10.legacy.i386.rpm
Red Hat Linux 9:
http://download.fedoralegacy.org/redhat/9/updates/i386/squid-2.5.STABL E1-9.10.legacy.i386.rpm

SuSE squid-2.5.STABLE1-108.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/squid-2.5.STABLE1 -108.i586.rpm

Squid Web Proxy Cache 2.5 .STABLE3

Mandrake squid-2.5.STABLE3-3.7.92mdk.amd64.rpm
Mandrake Linux 9.2/AMD64
http://www.mandrakesecure.net/en/ftp.php

Mandrake squid-2.5.STABLE3-3.7.92mdk.i586.rpm
Mandrake Linux 9.2
http://www.mandrakesecure.net/en/ftp.php

RedHat squid-2.5.STABLE3-2.fc1.6.legacy.i386.rpm
Fedora Core 1:
http://download.fedoralegacy.org/fedora/1/updates/i386/squid-2.5.STABL E3-2.fc1.6.legacy.i386.rpm

SuSE squid-2.5.STABLE3-120.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/squid-2.5.STABLE3 -120.i586.rpm

SuSE squid-2.5.STABLE3-120.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/squid-2.5.STA BLE3-120.x86_64.rpm

Squid Web Proxy Cache 2.5 .STABLE7

Squid squid-2.5.STABLE8-dns_assert.patch
http://downloads.securityfocus.com/vulnerabilities/patches/squid-2.5.S TABLE8-dns_assert.patch

Squid Web Proxy Cache 2.5 .STABLE5

Fedora squid-2.5.STABLE8-1.FC2.1.i386.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

Fedora squid-2.5.STABLE8-1.FC2.1.x86_64.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

Fedora squid-debuginfo-2.5.STABLE8-1.FC2.1.i386.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

Fedora squid-debuginfo-2.5.STABLE8-1.FC2.1.x86_64.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

RedHat squid-2.5.STABLE9-1.FC2.4.legacy.i386.rpm
Fedora Core 2:
http://download.fedoralegacy.org/fedora/2/updates/i386/squid-2.5.STABL E9-1.FC2.4.legacy.i386.rpm

Squid squid-2.5.STABLE8-dns_assert.patch
http://downloads.securityfocus.com/vulnerabilities/patches/squid-2.5.S TABLE8-dns_assert.patch

SuSE squid-2.5.STABLE5-42.30.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/squid-2.5.STABLE5 -42.30.i586.rpm

SuSE squid-2.5.STABLE5-42.30.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/squid-2.5.STA BLE5-42.30.x86_64.rpm

Squid Web Proxy Cache 2.5 .STABLE8

Squid squid-2.5.STABLE8-dns_assert.patch
http://downloads.securityfocus.com/vulnerabilities/patches/squid-2.5.S TABLE8-dns_assert.patch

SGI ProPack 3.0

SGI Patch 10151
http://support.sgi.com/

References

Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability

References:

Assertion failure on certain odd DNS responses (Squid)
Bugzilla Bug 1234 util.c:612: xstrndup: Assertion `n' failed. (Squid)
RHSA-2005:173-09 - squid security update (RedHat)