Description
Due to incorrect pointer handling Squid is vulnerable to denial
of service attack when processing ESI responses. This problem allows a
remote server delivering certain ESI response syntax to trigger a denial
of service for all clients accessing the Squid service (SQUID-2018:1).
Due to incorrect pointer handling Squid is vulnerable to denial of
service attack when processing ESI responses or downloading intermediate
CA certificates. This problem allows a remote client delivering certain
HTTP requests in conjunction with certain trusted server responses to
trigger a denial of service for all clients accessing the Squid service
(SQUID-2018:2).