CVE-2012-5643 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2012-5643 Interim 1 32 2023-02-15T02:15:06Z current 2021-05-30T13:07:24Z 2023-02-15T02:15:06Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2012-5643 Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST requests, or (3) crafted authentication credentials. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2013-February/000350.html E-Mail link for SUSE-SU-2013:0327-1 https://lists.suse.com/pipermail/sle-security-updates/2013-February/000353.html E-Mail link for SUSE-SU-2013:0327-2 https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html E-Mail link for SUSE-SU-2016:1996-1 https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html E-Mail link for SUSE-SU-2016:2089-1 https://lists.opensuse.org/opensuse-updates/2013-01/msg00052.html E-Mail link for openSUSE-SU-2013:0162-1 https://lists.opensuse.org/opensuse-updates/2013-01/msg00075.html E-Mail link for openSUSE-SU-2013:0186-1 https://lists.opensuse.org/opensuse-updates/2013-09/msg00025.html E-Mail link for openSUSE-SU-2013:1436-1 https://lists.opensuse.org/opensuse-updates/2013-09/msg00032.html E-Mail link for openSUSE-SU-2013:1443-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11 SP4 LTSS SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 15 SP1-LTSS SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 15-ESPOS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server Business Critical Linux 15 SP1 SUSE Linux Enterprise Server Teradata 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Manager Proxy 4.0 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Manager Retail Branch Server 4.0 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Manager Server 4.0 SUSE Linux Enterprise Module for Server Applications 15 SP2 openSUSE Tumbleweed squid squid-2.7.STABLE5-2.12.12.1 squid-2.7.STABLE5-2.12.16.1 squid-3.3.13-1.8 squid-3.3.13-4.2 squid-3.5.21-23.4 squid-3.5.21-25.1 squid-3.5.21-26.9.1 squid-3.5.22-1.1 squid-4.0.23-3.47 squid-4.4-5.3.2 squid-4.8-2.17 squid3 squid3-3.1.12-8.12.1 squid3-3.1.23-8.16.30.1 squid-4.8-2.17 as a component of SUSE Linux Enterprise High Performance Computing 12 SP5 squid-4.0.23-3.47 as a component of SUSE Linux Enterprise Module for Server Applications 15 squid-4.4-5.3.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP1 squid-2.7.STABLE5-2.12.12.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA squid-2.7.STABLE5-2.12.12.1 as a component of SUSE Linux Enterprise Server 11 SP2 squid3-3.1.12-8.12.1 as a component of SUSE Linux Enterprise Server 11 SP2 squid-2.7.STABLE5-2.12.12.1 as a component of SUSE Linux Enterprise Server 11 SP3 squid3-3.1.12-8.12.1 as a component of SUSE Linux Enterprise Server 11 SP3 squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA squid-2.7.STABLE5-2.12.16.1 as a component of SUSE Linux Enterprise Server 11 SP4 squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server 11 SP4 squid-3.3.13-1.8 as a component of SUSE Linux Enterprise Server 12 squid-3.3.13-4.2 as a component of SUSE Linux Enterprise Server 12 SP1 squid-3.5.21-23.4 as a component of SUSE Linux Enterprise Server 12 SP2 squid-3.5.21-25.1 as a component of SUSE Linux Enterprise Server 12 SP3 squid-3.5.21-26.9.1 as a component of SUSE Linux Enterprise Server 12 SP4 squid-4.8-2.17 as a component of SUSE Linux Enterprise Server 12 SP5 squid-3.5.21-23.4 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 squid-2.7.STABLE5-2.12.12.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 squid3-3.1.12-8.12.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP4 squid-3.5.22-1.1 as a component of openSUSE Tumbleweed squid as a component of SUSE CaaS Platform 4.0 squid as a component of SUSE Enterprise Storage 6 squid as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS squid as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS squid as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 squid as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata squid3 as a component of SUSE Linux Enterprise Server 11 SP4 LTSS squid as a component of SUSE Linux Enterprise Server 15 SP1-LTSS squid as a component of SUSE Linux Enterprise Server 15-ESPOS squid as a component of SUSE Linux Enterprise Server 15-LTSS squid as a component of SUSE Linux Enterprise Server Business Critical Linux 15 SP1 squid as a component of SUSE Linux Enterprise Server Teradata 12 SP3 squid as a component of SUSE Linux Enterprise Server for SAP Applications 15 squid as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 squid as a component of SUSE Manager Proxy 4.0 squid as a component of SUSE Manager Retail Branch Server 4.0 squid as a component of SUSE Manager Server 4.0 Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST requests, or (3) crafted authentication credentials. CVE-2012-5643 SUSE Linux Enterprise High Performance Computing 12 SP5:squid-4.8-2.17 SUSE Linux Enterprise Module for Server Applications 15:squid-4.0.23-3.47 SUSE Linux Enterprise Module for Server Applications 15 SP1:squid-4.4-5.3.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:squid-2.7.STABLE5-2.12.12.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:squid3-3.1.23-8.16.30.1 SUSE Linux Enterprise Server 11 SP2:squid-2.7.STABLE5-2.12.12.1 SUSE Linux Enterprise Server 11 SP2:squid3-3.1.12-8.12.1 SUSE Linux Enterprise Server 11 SP3:squid-2.7.STABLE5-2.12.12.1 SUSE Linux Enterprise Server 11 SP3:squid3-3.1.12-8.12.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:squid3-3.1.23-8.16.30.1 SUSE Linux Enterprise Server 11 SP4:squid-2.7.STABLE5-2.12.16.1 SUSE Linux Enterprise Server 11 SP4:squid3-3.1.23-8.16.30.1 SUSE Linux Enterprise Server 12:squid-3.3.13-1.8 SUSE Linux Enterprise Server 12 SP1:squid-3.3.13-4.2 SUSE Linux Enterprise Server 12 SP2:squid-3.5.21-23.4 SUSE Linux Enterprise Server 12 SP3:squid-3.5.21-25.1 SUSE Linux Enterprise Server 12 SP4:squid-3.5.21-26.9.1 SUSE Linux Enterprise Server 12 SP5:squid-4.8-2.17 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:squid-3.5.21-23.4 SUSE Linux Enterprise Server for SAP Applications 11 SP2:squid-2.7.STABLE5-2.12.12.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:squid3-3.1.12-8.12.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:squid3-3.1.23-8.16.30.1 openSUSE Tumbleweed:squid-3.5.22-1.1 SUSE CaaS Platform 4.0:squid SUSE Enterprise Storage 6:squid SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:squid SUSE Linux Enterprise High Performance Computing 15-LTSS:squid SUSE Linux Enterprise Module for Server Applications 15 SP2:squid SUSE Linux Enterprise Server 11 SP3 for Teradata:squid SUSE Linux Enterprise Server 15 SP1-LTSS:squid SUSE Linux Enterprise Server 15-ESPOS:squid SUSE Linux Enterprise Server 15-LTSS:squid SUSE Linux Enterprise Server Business Critical Linux 15 SP1:squid SUSE Linux Enterprise Server Teradata 12 SP3:squid SUSE Linux Enterprise Server for SAP Applications 15 SP1:squid SUSE Linux Enterprise Server for SAP Applications 15:squid SUSE Manager Proxy 4.0:squid SUSE Manager Retail Branch Server 4.0:squid SUSE Manager Server 4.0:squid SUSE Linux Enterprise Server 11 SP4 LTSS:squid3 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P