Launchpad.net

CVE 2023-46848

Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input.

Related bugs and status

CVE-2023-46848 (Candidate) is related to these bugs:

Bug #2040426: Merge squid from Debian unstable for noble

Summary				In	Importance	Status
	2040426	Merge squid from Debian unstable for noble		squid (Ubuntu)	Undecided	Fix Released

Bug #2041837: squid:update to 6.4+ get fixes for CVEs

		In	Importance	Status
2041837	squid:update to 6.4+ get fixes for CVEs	Ubuntu Docker Images	Undecided	New
2041837	squid:update to 6.4+ get fixes for CVEs	squid (Ubuntu)	Undecided	Fix Released
2041837	squid:update to 6.4+ get fixes for CVEs	squid (Ubuntu Mantic)	Undecided	Fix Released
2041837	squid:update to 6.4+ get fixes for CVEs	squid (Ubuntu Noble)	Undecided	Fix Released
2041837	squid:update to 6.4+ get fixes for CVEs	squid (Ubuntu Lunar)	Undecided	Won't Fix
2041837	squid:update to 6.4+ get fixes for CVEs	squid (Ubuntu Jammy)	Undecided	Fix Released
2041837	squid:update to 6.4+ get fixes for CVEs	squid (Ubuntu Focal)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2023-46848

Related bugs and status

Related bugs

References