cvelistv5 - cve-2004-0918

cve-2004-0918

Vulnerability from cvelistv5

Published

2004-10-21 04:00

Modified

2024-08-08 00:31

Severity ?

Summary

The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.

References

URL	Tags
cve@mitre.org	ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt
cve@mitre.org	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000923
cve@mitre.org	http://fedoranews.org/updates/FEDORA--.shtml
cve@mitre.org	http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html
cve@mitre.org	http://marc.info/?l=bugtraq&m=109913064629327&w=2
cve@mitre.org	http://secunia.com/advisories/30914	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/30967	Vendor Advisory
cve@mitre.org	http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml
cve@mitre.org	http://www.idefense.com/application/poi/display?id=152&type=vulnerabilities&flashstatus=false
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2004-591.html	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/11385	Patch, Vendor Advisory
cve@mitre.org	http://www.squid-cache.org/Advisories/SQUID-2004_3.txt
cve@mitre.org	http://www.squid-cache.org/Advisories/SQUID-2008_1.txt
cve@mitre.org	http://www.vupen.com/english/advisories/2008/1969/references	Vendor Advisory
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/17688
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931
cve@mitre.org	https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html
af854a3a-2127-422b-91ae-364da2661108	ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt
af854a3a-2127-422b-91ae-364da2661108	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000923
af854a3a-2127-422b-91ae-364da2661108	http://fedoranews.org/updates/FEDORA--.shtml
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=109913064629327&w=2
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/30914	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/30967	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.idefense.com/application/poi/display?id=152&type=vulnerabilities&flashstatus=false
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2004-591.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/11385	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.squid-cache.org/Advisories/SQUID-2004_3.txt
af854a3a-2127-422b-91ae-364da2661108	http://www.squid-cache.org/Advisories/SQUID-2008_1.txt
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/1969/references	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/17688
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931
af854a3a-2127-422b-91ae-364da2661108	https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T00:31:48.079Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "CLA-2005:923",
            "tags": [
              "vendor-advisory",
              "x_refsource_CONECTIVA",
              "x_transferred"
            ],
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
          },
          {
            "name": "11385",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/11385"
          },
          {
            "name": "SCOSA-2005.16",
            "tags": [
              "vendor-advisory",
              "x_refsource_SCO",
              "x_transferred"
            ],
            "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt"
          },
          {
            "name": "RHSA-2004:591",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
          },
          {
            "name": "20041011 Squid Web Proxy Cache Remote Denial of Service Vulnerability",
            "tags": [
              "third-party-advisory",
              "x_refsource_IDEFENSE",
              "x_transferred"
            ],
            "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
          },
          {
            "name": "oval:org.mitre.oval:def:10931",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
          },
          {
            "name": "ADV-2008-1969",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/1969/references"
          },
          {
            "name": "30967",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/30967"
          },
          {
            "name": "FLSA-2006:152809",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://fedoranews.org/updates/FEDORA--.shtml"
          },
          {
            "name": "SUSE-SR:2008:014",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
          },
          {
            "name": "FEDORA-2008-6045",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
          },
          {
            "name": "OpenPKG-SA-2004.048",
            "tags": [
              "vendor-advisory",
              "x_refsource_OPENPKG",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
          },
          {
            "name": "squid-snmp-asnparseheader-dos(17688)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
          },
          {
            "name": "30914",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/30914"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
          },
          {
            "name": "GLSA-200410-15",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2004-10-11T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-10T00:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "CLA-2005:923",
          "tags": [
            "vendor-advisory",
            "x_refsource_CONECTIVA"
          ],
          "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
        },
        {
          "name": "11385",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/11385"
        },
        {
          "name": "SCOSA-2005.16",
          "tags": [
            "vendor-advisory",
            "x_refsource_SCO"
          ],
          "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt"
        },
        {
          "name": "RHSA-2004:591",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
        },
        {
          "name": "20041011 Squid Web Proxy Cache Remote Denial of Service Vulnerability",
          "tags": [
            "third-party-advisory",
            "x_refsource_IDEFENSE"
          ],
          "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
        },
        {
          "name": "oval:org.mitre.oval:def:10931",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
        },
        {
          "name": "ADV-2008-1969",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/1969/references"
        },
        {
          "name": "30967",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/30967"
        },
        {
          "name": "FLSA-2006:152809",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://fedoranews.org/updates/FEDORA--.shtml"
        },
        {
          "name": "SUSE-SR:2008:014",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
        },
        {
          "name": "FEDORA-2008-6045",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
        },
        {
          "name": "OpenPKG-SA-2004.048",
          "tags": [
            "vendor-advisory",
            "x_refsource_OPENPKG"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
        },
        {
          "name": "squid-snmp-asnparseheader-dos(17688)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
        },
        {
          "name": "30914",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/30914"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
        },
        {
          "name": "GLSA-200410-15",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-0918",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "CLA-2005:923",
              "refsource": "CONECTIVA",
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
            },
            {
              "name": "11385",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/11385"
            },
            {
              "name": "SCOSA-2005.16",
              "refsource": "SCO",
              "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt"
            },
            {
              "name": "RHSA-2004:591",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
            },
            {
              "name": "20041011 Squid Web Proxy Cache Remote Denial of Service Vulnerability",
              "refsource": "IDEFENSE",
              "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
            },
            {
              "name": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt",
              "refsource": "CONFIRM",
              "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
            },
            {
              "name": "oval:org.mitre.oval:def:10931",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
            },
            {
              "name": "ADV-2008-1969",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/1969/references"
            },
            {
              "name": "30967",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/30967"
            },
            {
              "name": "FLSA-2006:152809",
              "refsource": "FEDORA",
              "url": "http://fedoranews.org/updates/FEDORA--.shtml"
            },
            {
              "name": "SUSE-SR:2008:014",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
            },
            {
              "name": "FEDORA-2008-6045",
              "refsource": "FEDORA",
              "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
            },
            {
              "name": "OpenPKG-SA-2004.048",
              "refsource": "OPENPKG",
              "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
            },
            {
              "name": "squid-snmp-asnparseheader-dos(17688)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
            },
            {
              "name": "30914",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/30914"
            },
            {
              "name": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt",
              "refsource": "CONFIRM",
              "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
            },
            {
              "name": "GLSA-200410-15",
              "refsource": "GENTOO",
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2004-0918",
    "datePublished": "2004-10-21T04:00:00",
    "dateReserved": "2004-09-27T00:00:00",
    "dateUpdated": "2024-08-08T00:31:48.079Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openpkg:openpkg:2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"37042CDE-E4FE-442E-891A-CD84433D36E2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openpkg:openpkg:2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"11F6E348-01DF-4FA4-808E-39A2A7A2B97B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openpkg:openpkg:current:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D342447B-5233-45FD-B1CF-8D84921402AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E0AA7680-E004-44AC-9AE9-C0186459C4B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.1_patch2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05A4829D-4DC1-4CD2-B136-48719A254EA9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.3_.stable4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9A6BFB6A-0AFC-4E52-AD48-252E741B683B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.3_.stable5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F9797A37-FD26-4527-B2FA-E458F7A88D9B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"540AA8A9-A4AB-4DB2-B37E-11876348DF3A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.4_.stable2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8F697BB-5C94-42CD-AD9E-72C3D3675D27\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.4_.stable6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE764CDC-1018-4502-8F41-8A48E38E7AAF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.4_.stable7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6CBAAC5B-6012-410F-B765-689A8D55B095\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.5_.stable1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"62C66D46-D3C7-4FCC-B80D-EBA542E77C13\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.5_.stable3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0B6C02F-D194-4CA7-9DEC-A436A4E8C99C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.5_.stable4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8B7D86CB-EEAD-4C40-855D-E98E4ED8B58F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.5_.stable5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F59C3E7-0AC0-4886-B4B4-56904AC93C55\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:2.5_.stable6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5207FB50-946A-4AB2-AED9-9BA78B88F1F3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:3.0_pre1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF89643B-169C-4ECD-B905-F4FE7F37030D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:3.0_pre2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"631B754D-1EB0-4A64-819A-5A24E7D0ADFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:squid:squid:3.0_pre3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"95AB69CF-AD54-4D30-A9C5-4253855A760F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"647BA336-5538-4972-9271-383A0EC9378E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E6996B14-925B-46B8-982F-3545328B506B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"39605B96-BAD6-45C9-BB9A-43D6E2C51ADD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"53AF1A2D-B0A2-4097-AD1D-DF3AF27171BA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A67735E5-E43E-4164-BDB2-ADC6E0288E9F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*\", \"matchCriteriaId\": \"6E94583A-5184-462E-9FC4-57B35DA06DA7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*\", \"matchCriteriaId\": \"E905FAAD-37B6-4DD0-A752-2974F8336273\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.\"}]",
      "id": "CVE-2004-0918",
      "lastModified": "2024-11-20T23:49:40.737",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2005-01-27T05:00:00.000",
      "references": "[{\"url\": \"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://fedoranews.org/updates/FEDORA--.shtml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/30914\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/30967\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2004-591.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/11385\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.squid-cache.org/Advisories/SQUID-2004_3.txt\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.squid-cache.org/Advisories/SQUID-2008_1.txt\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/1969/references\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17688\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://fedoranews.org/updates/FEDORA--.shtml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/30914\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/30967\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2004-591.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/11385\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.squid-cache.org/Advisories/SQUID-2004_3.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.squid-cache.org/Advisories/SQUID-2008_1.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/1969/references\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17688\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-399\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2004-0918\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2005-01-27T05:00:00.000\",\"lastModified\":\"2024-11-20T23:49:40.737\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openpkg:openpkg:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37042CDE-E4FE-442E-891A-CD84433D36E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openpkg:openpkg:2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11F6E348-01DF-4FA4-808E-39A2A7A2B97B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openpkg:openpkg:current:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D342447B-5233-45FD-B1CF-8D84921402AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0AA7680-E004-44AC-9AE9-C0186459C4B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.1_patch2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05A4829D-4DC1-4CD2-B136-48719A254EA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.3_.stable4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A6BFB6A-0AFC-4E52-AD48-252E741B683B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.3_.stable5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9797A37-FD26-4527-B2FA-E458F7A88D9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"540AA8A9-A4AB-4DB2-B37E-11876348DF3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.4_.stable2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8F697BB-5C94-42CD-AD9E-72C3D3675D27\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.4_.stable6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE764CDC-1018-4502-8F41-8A48E38E7AAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.4_.stable7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6CBAAC5B-6012-410F-B765-689A8D55B095\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.5_.stable1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62C66D46-D3C7-4FCC-B80D-EBA542E77C13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.5_.stable3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0B6C02F-D194-4CA7-9DEC-A436A4E8C99C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.5_.stable4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B7D86CB-EEAD-4C40-855D-E98E4ED8B58F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.5_.stable5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F59C3E7-0AC0-4886-B4B4-56904AC93C55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:2.5_.stable6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5207FB50-946A-4AB2-AED9-9BA78B88F1F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:3.0_pre1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF89643B-169C-4ECD-B905-F4FE7F37030D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:3.0_pre2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"631B754D-1EB0-4A64-819A-5A24E7D0ADFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:squid:squid:3.0_pre3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95AB69CF-AD54-4D30-A9C5-4253855A760F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"647BA336-5538-4972-9271-383A0EC9378E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6996B14-925B-46B8-982F-3545328B506B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39605B96-BAD6-45C9-BB9A-43D6E2C51ADD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53AF1A2D-B0A2-4097-AD1D-DF3AF27171BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A67735E5-E43E-4164-BDB2-ADC6E0288E9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*\",\"matchCriteriaId\":\"6E94583A-5184-462E-9FC4-57B35DA06DA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*\",\"matchCriteriaId\":\"E905FAAD-37B6-4DD0-A752-2974F8336273\"}]}]}],\"references\":[{\"url\":\"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://fedoranews.org/updates/FEDORA--.shtml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/30914\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/30967\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2004-591.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/11385\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.squid-cache.org/Advisories/SQUID-2004_3.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.squid-cache.org/Advisories/SQUID-2008_1.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/1969/references\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17688\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://fedoranews.org/updates/FEDORA--.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/30914\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/30967\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2004-591.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/11385\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.squid-cache.org/Advisories/SQUID-2004_3.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.squid-cache.org/Advisories/SQUID-2008_1.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/1969/references\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17688\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

fkie_cve-2004-0918

Vulnerability from fkie_nvd

Published

2005-01-27 05:00

Modified

2024-11-20 23:49

Severity ?

Summary

References

URL	Tags
cve@mitre.org	ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt
cve@mitre.org	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000923
cve@mitre.org	http://fedoranews.org/updates/FEDORA--.shtml
cve@mitre.org	http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html
cve@mitre.org	http://marc.info/?l=bugtraq&m=109913064629327&w=2
cve@mitre.org	http://secunia.com/advisories/30914	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/30967	Vendor Advisory
cve@mitre.org	http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml
cve@mitre.org	http://www.idefense.com/application/poi/display?id=152&type=vulnerabilities&flashstatus=false
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2004-591.html	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/11385	Patch, Vendor Advisory
cve@mitre.org	http://www.squid-cache.org/Advisories/SQUID-2004_3.txt
cve@mitre.org	http://www.squid-cache.org/Advisories/SQUID-2008_1.txt
cve@mitre.org	http://www.vupen.com/english/advisories/2008/1969/references	Vendor Advisory
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/17688
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931
cve@mitre.org	https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html
af854a3a-2127-422b-91ae-364da2661108	ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt
af854a3a-2127-422b-91ae-364da2661108	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000923
af854a3a-2127-422b-91ae-364da2661108	http://fedoranews.org/updates/FEDORA--.shtml
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=109913064629327&w=2
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/30914	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/30967	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.idefense.com/application/poi/display?id=152&type=vulnerabilities&flashstatus=false
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2004-591.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/11385	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.squid-cache.org/Advisories/SQUID-2004_3.txt
af854a3a-2127-422b-91ae-364da2661108	http://www.squid-cache.org/Advisories/SQUID-2008_1.txt
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/1969/references	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/17688
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931
af854a3a-2127-422b-91ae-364da2661108	https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html

Impacted products

Vendor	Product	Version
openpkg	openpkg	2.1
openpkg	openpkg	2.2
openpkg	openpkg	current
squid	squid	2.0_patch2
squid	squid	2.1_patch2
squid	squid	2.3_.stable4
squid	squid	2.3_.stable5
squid	squid	2.4
squid	squid	2.4_.stable2
squid	squid	2.4_.stable6
squid	squid	2.4_.stable7
squid	squid	2.5_.stable1
squid	squid	2.5_.stable3
squid	squid	2.5_.stable4
squid	squid	2.5_.stable5
squid	squid	2.5_.stable6
squid	squid	3.0_pre1
squid	squid	3.0_pre2
squid	squid	3.0_pre3
gentoo	linux	*
redhat	fedora_core	core_2.0
trustix	secure_linux	1.5
trustix	secure_linux	2.0
trustix	secure_linux	2.1
ubuntu	ubuntu_linux	4.1
ubuntu	ubuntu_linux	4.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:openpkg:openpkg:2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "37042CDE-E4FE-442E-891A-CD84433D36E2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openpkg:openpkg:2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "11F6E348-01DF-4FA4-808E-39A2A7A2B97B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openpkg:openpkg:current:*:*:*:*:*:*:*",
              "matchCriteriaId": "D342447B-5233-45FD-B1CF-8D84921402AD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0AA7680-E004-44AC-9AE9-C0186459C4B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.1_patch2:*:*:*:*:*:*:*",
              "matchCriteriaId": "05A4829D-4DC1-4CD2-B136-48719A254EA9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.3_.stable4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A6BFB6A-0AFC-4E52-AD48-252E741B683B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.3_.stable5:*:*:*:*:*:*:*",
              "matchCriteriaId": "F9797A37-FD26-4527-B2FA-E458F7A88D9B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "540AA8A9-A4AB-4DB2-B37E-11876348DF3A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.4_.stable2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8F697BB-5C94-42CD-AD9E-72C3D3675D27",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.4_.stable6:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE764CDC-1018-4502-8F41-8A48E38E7AAF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.4_.stable7:*:*:*:*:*:*:*",
              "matchCriteriaId": "6CBAAC5B-6012-410F-B765-689A8D55B095",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.5_.stable1:*:*:*:*:*:*:*",
              "matchCriteriaId": "62C66D46-D3C7-4FCC-B80D-EBA542E77C13",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.5_.stable3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B0B6C02F-D194-4CA7-9DEC-A436A4E8C99C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.5_.stable4:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B7D86CB-EEAD-4C40-855D-E98E4ED8B58F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.5_.stable5:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F59C3E7-0AC0-4886-B4B4-56904AC93C55",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:2.5_.stable6:*:*:*:*:*:*:*",
              "matchCriteriaId": "5207FB50-946A-4AB2-AED9-9BA78B88F1F3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:3.0_pre1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CF89643B-169C-4ECD-B905-F4FE7F37030D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:3.0_pre2:*:*:*:*:*:*:*",
              "matchCriteriaId": "631B754D-1EB0-4A64-819A-5A24E7D0ADFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:squid:squid:3.0_pre3:*:*:*:*:*:*:*",
              "matchCriteriaId": "95AB69CF-AD54-4D30-A9C5-4253855A760F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "647BA336-5538-4972-9271-383A0EC9378E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6996B14-925B-46B8-982F-3545328B506B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "39605B96-BAD6-45C9-BB9A-43D6E2C51ADD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "53AF1A2D-B0A2-4097-AD1D-DF3AF27171BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A67735E5-E43E-4164-BDB2-ADC6E0288E9F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*",
              "matchCriteriaId": "6E94583A-5184-462E-9FC4-57B35DA06DA7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*",
              "matchCriteriaId": "E905FAAD-37B6-4DD0-A752-2974F8336273",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error."
    }
  ],
  "id": "CVE-2004-0918",
  "lastModified": "2024-11-20T23:49:40.737",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2005-01-27T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://fedoranews.org/updates/FEDORA--.shtml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/30914"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/30967"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/11385"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2008/1969/references"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://fedoranews.org/updates/FEDORA--.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/30914"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/30967"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/11385"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2008/1969/references"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ghsa-jx7g-w69f-vmq6

Vulnerability from github

Published

2022-05-03 03:13

Modified

2022-05-03 03:13

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2004-0918"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2005-01-27T05:00:00Z",
    "severity": "MODERATE"
  },
  "details": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.",
  "id": "GHSA-jx7g-w69f-vmq6",
  "modified": "2022-05-03T03:13:11Z",
  "published": "2022-05-03T03:13:11Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0918"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
    },
    {
      "type": "WEB",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
    },
    {
      "type": "WEB",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
    },
    {
      "type": "WEB",
      "url": "http://fedoranews.org/updates/FEDORA--.shtml"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/30914"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/30967"
    },
    {
      "type": "WEB",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/11385"
    },
    {
      "type": "WEB",
      "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2008/1969/references"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

RHSA-2004:591

Vulnerability from csaf_redhat

Published

2004-10-20 19:20

Modified

2024-11-21 23:16

Summary

Red Hat Security Advisory: squid security update

Notes

Topic

An updated squid package that fixes a remote denial of service vulnerability is now avaliable.

Details

Squid is a full-featured Web proxy cache. iDEFENSE reported a flaw in the squid SNMP module. This flaw could allow an attacker who has the ability to send arbitrary packets to the SNMP port to restart the server, causing it to drop all open connections. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0918 to this issue. All users of squid should update to this erratum package, which contains a backport of the security fix for this vulnerability.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated squid package that fixes a remote denial of service vulnerability \nis now avaliable.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Squid is a full-featured Web proxy cache.\n\niDEFENSE reported a flaw in the squid SNMP module.  This flaw could allow\nan attacker who has the ability to send arbitrary packets to the SNMP port\nto restart the server, causing it to drop all open connections.  The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2004-0918 to this issue.\n\nAll users of squid should update to this erratum package, which contains a\nbackport of the security fix for this vulnerability.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:591",
        "url": "https://access.redhat.com/errata/RHSA-2004:591"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities",
        "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities"
      },
      {
        "category": "external",
        "summary": "135319",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=135319"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_591.json"
      }
    ],
    "title": "Red Hat Security Advisory: squid security update",
    "tracking": {
      "current_release_date": "2024-11-21T23:16:20+00:00",
      "generator": {
        "date": "2024-11-21T23:16:20+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2004:591",
      "initial_release_date": "2004-10-20T19:20:00+00:00",
      "revision_history": [
        {
          "date": "2004-10-20T19:20:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-10-20T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T23:16:20+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=ia64\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=ia64\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=x86_64\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=x86_64\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=i386\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.i386",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.i386",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=i386\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.src",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.src",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=src\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=ppc\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=ppc\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=s390x\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=s390x\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=s390\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.s390",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.s390",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=s390\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2004-0918",
      "discovery_date": "2004-10-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "453211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Squid SNMP DoS",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.src",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.src",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.src",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2004-0918"
        },
        {
          "category": "external",
          "summary": "RHBZ#453211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=453211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0918",
          "url": "https://www.cve.org/CVERecord?id=CVE-2004-0918"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0918",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0918"
        }
      ],
      "release_date": "2004-10-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-10-20T19:20:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  Use Red Hat\nNetwork to download and update your packages.  To launch the Red Hat\nUpdate Agent, use the following command:\n\n    up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n    http://www.redhat.com/docs/manuals/enterprise/",
          "product_ids": [
            "3AS:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.src",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.src",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.src",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:591"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Squid SNMP DoS"
    }
  ]
}

rhsa-2004_591

Vulnerability from csaf_redhat

Published

2004-10-20 19:20

Modified

2024-11-21 23:16

Summary

Red Hat Security Advisory: squid security update

Notes

Topic

An updated squid package that fixes a remote denial of service vulnerability is now avaliable.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated squid package that fixes a remote denial of service vulnerability \nis now avaliable.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Squid is a full-featured Web proxy cache.\n\niDEFENSE reported a flaw in the squid SNMP module.  This flaw could allow\nan attacker who has the ability to send arbitrary packets to the SNMP port\nto restart the server, causing it to drop all open connections.  The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2004-0918 to this issue.\n\nAll users of squid should update to this erratum package, which contains a\nbackport of the security fix for this vulnerability.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:591",
        "url": "https://access.redhat.com/errata/RHSA-2004:591"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities",
        "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities"
      },
      {
        "category": "external",
        "summary": "135319",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=135319"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_591.json"
      }
    ],
    "title": "Red Hat Security Advisory: squid security update",
    "tracking": {
      "current_release_date": "2024-11-21T23:16:20+00:00",
      "generator": {
        "date": "2024-11-21T23:16:20+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2004:591",
      "initial_release_date": "2004-10-20T19:20:00+00:00",
      "revision_history": [
        {
          "date": "2004-10-20T19:20:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-10-20T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T23:16:20+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=ia64\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=ia64\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=x86_64\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=x86_64\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=i386\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.i386",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.i386",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=i386\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.src",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.src",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=src\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=ppc\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=ppc\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=s390x\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=s390x\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=s390\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.s390",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.s390",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=s390\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2004-0918",
      "discovery_date": "2004-10-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "453211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Squid SNMP DoS",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.src",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.src",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.src",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2004-0918"
        },
        {
          "category": "external",
          "summary": "RHBZ#453211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=453211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0918",
          "url": "https://www.cve.org/CVERecord?id=CVE-2004-0918"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0918",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0918"
        }
      ],
      "release_date": "2004-10-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-10-20T19:20:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  Use Red Hat\nNetwork to download and update your packages.  To launch the Red Hat\nUpdate Agent, use the following command:\n\n    up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n    http://www.redhat.com/docs/manuals/enterprise/",
          "product_ids": [
            "3AS:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.src",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.src",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.src",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:591"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Squid SNMP DoS"
    }
  ]
}

rhsa-2004:591

Vulnerability from csaf_redhat

Published

2004-10-20 19:20

Modified

2024-11-21 23:16

Summary

Red Hat Security Advisory: squid security update

Notes

Topic

An updated squid package that fixes a remote denial of service vulnerability is now avaliable.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated squid package that fixes a remote denial of service vulnerability \nis now avaliable.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Squid is a full-featured Web proxy cache.\n\niDEFENSE reported a flaw in the squid SNMP module.  This flaw could allow\nan attacker who has the ability to send arbitrary packets to the SNMP port\nto restart the server, causing it to drop all open connections.  The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2004-0918 to this issue.\n\nAll users of squid should update to this erratum package, which contains a\nbackport of the security fix for this vulnerability.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:591",
        "url": "https://access.redhat.com/errata/RHSA-2004:591"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities",
        "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities"
      },
      {
        "category": "external",
        "summary": "135319",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=135319"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_591.json"
      }
    ],
    "title": "Red Hat Security Advisory: squid security update",
    "tracking": {
      "current_release_date": "2024-11-21T23:16:20+00:00",
      "generator": {
        "date": "2024-11-21T23:16:20+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2004:591",
      "initial_release_date": "2004-10-20T19:20:00+00:00",
      "revision_history": [
        {
          "date": "2004-10-20T19:20:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-10-20T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T23:16:20+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=ia64\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=ia64\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=x86_64\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=x86_64\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=i386\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.i386",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.i386",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=i386\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.src",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.src",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=src\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=ppc\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=ppc\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=s390x\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=s390x\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                "product": {
                  "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                  "product_id": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid-debuginfo@2.5.STABLE3-6.3E.2?arch=s390\u0026epoch=7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "squid-7:2.5.STABLE3-6.3E.2.s390",
                "product": {
                  "name": "squid-7:2.5.STABLE3-6.3E.2.s390",
                  "product_id": "squid-7:2.5.STABLE3-6.3E.2.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/squid@2.5.STABLE3-6.3E.2?arch=s390\u0026epoch=7"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.src"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        },
        "product_reference": "squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
        "relates_to_product_reference": "3WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2004-0918",
      "discovery_date": "2004-10-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "453211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Squid SNMP DoS",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.src",
          "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src",
          "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.src",
          "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.i386",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.s390",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.src",
          "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
          "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2004-0918"
        },
        {
          "category": "external",
          "summary": "RHBZ#453211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=453211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0918",
          "url": "https://www.cve.org/CVERecord?id=CVE-2004-0918"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0918",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0918"
        }
      ],
      "release_date": "2004-10-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-10-20T19:20:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  Use Red Hat\nNetwork to download and update your packages.  To launch the Red Hat\nUpdate Agent, use the following command:\n\n    up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n    http://www.redhat.com/docs/manuals/enterprise/",
          "product_ids": [
            "3AS:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.src",
            "3AS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3AS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.src",
            "3Desktop:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3Desktop:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.src",
            "3ES:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3ES:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.i386",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.ia64",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.ppc",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.s390",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.s390x",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.src",
            "3WS:squid-7:2.5.STABLE3-6.3E.2.x86_64",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.i386",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ia64",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.ppc",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.s390x",
            "3WS:squid-debuginfo-7:2.5.STABLE3-6.3E.2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:591"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Squid SNMP DoS"
    }
  ]
}

gsd-2004-0918

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

Aliases

CVE-2004-0918

Aliases

CVE-2004-0918

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2004-0918",
    "description": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.",
    "id": "GSD-2004-0918",
    "references": [
      "https://www.suse.com/security/cve/CVE-2004-0918.html",
      "https://www.debian.org/security/2004/dsa-576",
      "https://access.redhat.com/errata/RHSA-2004:591"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2004-0918"
      ],
      "details": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.",
      "id": "GSD-2004-0918",
      "modified": "2023-12-13T01:22:54.294861Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2004-0918",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "CLA-2005:923",
            "refsource": "CONECTIVA",
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
          },
          {
            "name": "11385",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/11385"
          },
          {
            "name": "SCOSA-2005.16",
            "refsource": "SCO",
            "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt"
          },
          {
            "name": "RHSA-2004:591",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
          },
          {
            "name": "20041011 Squid Web Proxy Cache Remote Denial of Service Vulnerability",
            "refsource": "IDEFENSE",
            "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
          },
          {
            "name": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt",
            "refsource": "CONFIRM",
            "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
          },
          {
            "name": "oval:org.mitre.oval:def:10931",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
          },
          {
            "name": "ADV-2008-1969",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2008/1969/references"
          },
          {
            "name": "30967",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/30967"
          },
          {
            "name": "FLSA-2006:152809",
            "refsource": "FEDORA",
            "url": "http://fedoranews.org/updates/FEDORA--.shtml"
          },
          {
            "name": "SUSE-SR:2008:014",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
          },
          {
            "name": "FEDORA-2008-6045",
            "refsource": "FEDORA",
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
          },
          {
            "name": "OpenPKG-SA-2004.048",
            "refsource": "OPENPKG",
            "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
          },
          {
            "name": "squid-snmp-asnparseheader-dos(17688)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
          },
          {
            "name": "30914",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/30914"
          },
          {
            "name": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt",
            "refsource": "CONFIRM",
            "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
          },
          {
            "name": "GLSA-200410-15",
            "refsource": "GENTOO",
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:openpkg:openpkg:2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openpkg:openpkg:2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.4_.stable2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.4_.stable6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:3.0_pre2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:3.0_pre3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openpkg:openpkg:current:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.4_.stable7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.5_.stable1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.5_.stable3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.3_.stable5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.5_.stable6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:3.0_pre1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.1_patch2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.3_.stable4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.5_.stable4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:squid:squid:2.5_.stable5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-0918"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2004:591",
              "refsource": "REDHAT",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-591.html"
            },
            {
              "name": "11385",
              "refsource": "BID",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.securityfocus.com/bid/11385"
            },
            {
              "name": "CLA-2005:923",
              "refsource": "CONECTIVA",
              "tags": [],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000923"
            },
            {
              "name": "GLSA-200410-15",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-15.xml"
            },
            {
              "name": "SCOSA-2005.16",
              "refsource": "SCO",
              "tags": [],
              "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt"
            },
            {
              "name": "FLSA-2006:152809",
              "refsource": "FEDORA",
              "tags": [],
              "url": "http://fedoranews.org/updates/FEDORA--.shtml"
            },
            {
              "name": "20041011 Squid Web Proxy Cache Remote Denial of Service Vulnerability",
              "refsource": "IDEFENSE",
              "tags": [],
              "url": "http://www.idefense.com/application/poi/display?id=152\u0026type=vulnerabilities\u0026flashstatus=false"
            },
            {
              "name": "FEDORA-2008-6045",
              "refsource": "FEDORA",
              "tags": [],
              "url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.html"
            },
            {
              "name": "SUSE-SR:2008:014",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html"
            },
            {
              "name": "30914",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/30914"
            },
            {
              "name": "30967",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/30967"
            },
            {
              "name": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.squid-cache.org/Advisories/SQUID-2008_1.txt"
            },
            {
              "name": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.squid-cache.org/Advisories/SQUID-2004_3.txt"
            },
            {
              "name": "ADV-2008-1969",
              "refsource": "VUPEN",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.vupen.com/english/advisories/2008/1969/references"
            },
            {
              "name": "OpenPKG-SA-2004.048",
              "refsource": "OPENPKG",
              "tags": [],
              "url": "http://marc.info/?l=bugtraq\u0026m=109913064629327\u0026w=2"
            },
            {
              "name": "squid-snmp-asnparseheader-dos(17688)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17688"
            },
            {
              "name": "oval:org.mitre.oval:def:10931",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-10-11T01:29Z",
      "publishedDate": "2005-01-27T05:00Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2004-0918

Vulnerability from cvelistv5

fkie_cve-2004-0918

Vulnerability from fkie_nvd

ghsa-jx7g-w69f-vmq6

Vulnerability from github

RHSA-2004:591

Vulnerability from csaf_redhat

rhsa-2004_591

Vulnerability from csaf_redhat

rhsa-2004:591

Vulnerability from csaf_redhat

gsd-2004-0918

Vulnerability from gsd

Tags

Sightings

Nomenclature