CVE & CISA-KEV Catalog

CVE-2023-46724

HIGHEPSS 89th pctl
8.6
CVSS v3
NVD

Description

Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using `--with-openssl` are vulnerable to a Denial of Service attack against SSL Certificate validation. This problem allows a remote server to perform Denial of Service against Squid Proxy by initiating a TLS Handshake with a specially crafted SSL Certificate in a server certificate chain. This attack is limited to HTTPS and SSL-Bump. This bug is fixed in Squid version 6.4. In addition, patches addressing this problem for the stable releases can be found in Squid's patch archives. Those who you use a prepackaged version of Squid should refer to the package vendor for availability information on updated packages.

How to fix

Remediation Available
squidDebian
Fixed in:4.13-10+deb11u3CVE-2023-46724
Fixed in:5.7-2+deb12u1CVE-2023-46724
Fixed in:6.5-1CVE-2023-46724
Fixed in:6.5-1CVE-2023-46724
libecapRed Hat / RHEL
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.src::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
libecapRocky
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.src::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.src::squid:4RHSA-2024:0397
libecap-debuginfoRed Hat / RHEL
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
libecap-debuginfoRocky
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
libecap-debugsourceRocky
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
libecap-debugsourceRed Hat / RHEL
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
libecap-develRed Hat / RHEL
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
libecap-develRocky
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0771
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.ppc64le::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.s390x::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.s390x::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0772
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.x86_64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.9.0+19703+a1da7223.aarch64::squid:4RHSA-2024:0046
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.aarch64::squid:4RHSA-2024:0397
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le::squid:4RHSA-2024:0773
Fixed in:0:1.0.1-2.module+el8.1.0+4044+36416a77.x86_64::squid:4RHSA-2024:0771
squidRed Hat / RHEL
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.aarch64::squid:4RHSA-2024:0397
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.ppc64le::squid:4RHSA-2024:0773
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.x86_64::squid:4RHSA-2024:0397
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.x86_64::squid:4RHSA-2024:0772
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.s390x::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.ppc64le::squid:4RHSA-2024:0771
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.src::squid:4RHSA-2024:0046
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.src::squid:4RHSA-2024:0772
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.ppc64le::squid:4RHSA-2024:0046
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.aarch64::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.src::squid:4RHSA-2024:0771
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.x86_64::squid:4RHSA-2024:0046
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.src::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.s390x::squid:4RHSA-2024:0397
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.x86_64::squid:4RHSA-2024:0771
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.aarch64::squid:4RHSA-2024:0046
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.ppc64le::squid:4RHSA-2024:0397
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.src::squid:4RHSA-2024:0773
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.x86_64::squid:4RHSA-2024:0773
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.s390x::squid:4RHSA-2024:0046
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.ppc64le::squid:4RHSA-2024:0772
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
squidRocky
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.ppc64le::squid:4RHSA-2024:0046
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.s390x::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.x86_64::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.s390x::squid:4RHSA-2024:0397
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.src::squid:4RHSA-2024:0046
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.src::squid:4RHSA-2024:0773
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.ppc64le::squid:4RHSA-2024:0771
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.x86_64::squid:4RHSA-2024:0773
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.aarch64::squid:4RHSA-2024:0771
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.x86_64::squid:4RHSA-2024:0772
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.src::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.ppc64le::squid:4RHSA-2024:0397
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.ppc64le::squid:4RHSA-2024:0773
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.ppc64le::squid:4RHSA-2024:0772
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.aarch64::squid:4RHSA-2024:0397
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.x86_64::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.aarch64::squid:4RHSA-2024:0046
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.src::squid:4RHSA-2024:0397
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.s390x::squid:4RHSA-2024:0046
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.x86_64::squid:4RHSA-2024:0771
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.src::squid:4RHSA-2024:0772
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
squid-debuginfoRed Hat / RHEL
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.x86_64::squid:4RHSA-2024:0397
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.x86_64::squid:4RHSA-2024:0773
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.s390x::squid:4RHSA-2024:0771
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.ppc64le::squid:4RHSA-2024:0046
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.x86_64::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.ppc64le::squid:4RHSA-2024:0397
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.s390x::squid:4RHSA-2024:0046
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.x86_64::squid:4RHSA-2024:0772
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.ppc64le::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.s390x::squid:4RHSA-2024:0397
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.aarch64::squid:4RHSA-2024:0771
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.ppc64le::squid:4RHSA-2024:0772
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.aarch64::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.x86_64::squid:4RHSA-2024:0046
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.ppc64le::squid:4RHSA-2024:0773
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.aarch64::squid:4RHSA-2024:0397
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
squid-debuginfoRocky
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.aarch64::squid:4RHSA-2024:0046
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.s390x::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.s390x::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.ppc64le::squid:4RHSA-2024:0397
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.ppc64le::squid:4RHSA-2024:0772
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.ppc64le::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.aarch64::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.aarch64::squid:4RHSA-2024:0397
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.x86_64::squid:4RHSA-2024:0771
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.s390x::squid:4RHSA-2024:0046
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.ppc64le::squid:4RHSA-2024:0773
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.x86_64::squid:4RHSA-2024:0773
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.x86_64::squid:4RHSA-2024:0397
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.x86_64::squid:4RHSA-2024:0046
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.x86_64::squid:4RHSA-2024:0772
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.ppc64le::squid:4RHSA-2024:0046
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
squid-debugsourceRed Hat / RHEL
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.aarch64::squid:4RHSA-2024:0771
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.aarch64::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.ppc64le::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.s390x::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.x86_64::squid:4RHSA-2024:0046
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.x86_64::squid:4RHSA-2024:0773
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.ppc64le::squid:4RHSA-2024:0773
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.ppc64le::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.s390x::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.x86_64::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.aarch64::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.ppc64le::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.s390x::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.x86_64::squid:4RHSA-2024:0397
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.x86_64::squid:4RHSA-2024:0772
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.ppc64le::squid:4RHSA-2024:0772
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
squid-debugsourceRocky
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.aarch64::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.ppc64le::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.s390x::squid:4RHSA-2024:0046
Fixed in:7:4.15-7.module+el8.9.0+20975+25f17541.5.x86_64::squid:4RHSA-2024:0046
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.x86_64::squid:4RHSA-2024:0773
Fixed in:7:4.11-4.module+el8.4.0+21174+3894a031.6.ppc64le::squid:4RHSA-2024:0773
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.aarch64::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.ppc64le::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.s390x::squid:4RHSA-2024:0771
Fixed in:7:4.15-3.module+el8.6.0+21069+a1561e3d.4.x86_64::squid:4RHSA-2024:0771
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.aarch64::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.ppc64le::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.s390x::squid:4RHSA-2024:0397
Fixed in:7:4.15-6.module+el8.8.0+21068+0ecbc070.3.x86_64::squid:4RHSA-2024:0397
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.x86_64::squid:4RHSA-2024:0772
Fixed in:7:4.4-8.module+el8.2.0+21173+22259b09.7.ppc64le::squid:4RHSA-2024:0772
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.5-6.el9_3.5RHSA-2024:0071
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.5-5.el9_2.3RHSA-2024:0072
Fixed in:7:5.2-1.el9_0.4RHSA-2024:1153
squid-migration-scriptRed Hat / RHEL
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
squid-migration-scriptRocky
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
squid-sysvinitRed Hat / RHEL
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
squid-sysvinitRocky
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10.ppc64RHSA-2024:1787
Fixed in:7:3.5.20-17.el7_9.10RHSA-2024:1787
squidUbuntu
Fixed in:4.10-1ubuntu1.8USN-6500-1
Fixed in:5.7-0ubuntu0.22.04.2USN-6500-1
Fixed in:5.7-1ubuntu3.1USN-6500-1
Fixed in:6.1-2ubuntu1.1USN-6500-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeChanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Exploit Intelligence

4.01%probability of exploitation in 30 days
89thpercentile

Elevated risk: more likely to be exploited than 89% of all known CVEs.

References

Embed a live status badge for CVE-2023-46724
CVE-2023-46724 severity badge

Markdown

[![CVE-2023-46724](https://tridentstack.com/cve/badge/CVE-2023-46724.svg)](https://tridentstack.com/cve/CVE-2023-46724)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-46724"><img src="https://tridentstack.com/cve/badge/CVE-2023-46724.svg" alt="CVE-2023-46724"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-02-13.