CVE-2014-0128: squid can crash when SSLBump is used in combination with range requests.
The SSLBump feature acts as TLS/SSL termination for clients. If this feature is enabled, squid can crash with range requests, leading to a potential Denial of Service condition.
-
Submitted by
Roman Drahtmueller (draht)
Fixed bugs
bnc#867533
VUL-0: CVE-2014-0128: squid: squid3: SQUID-2014:1 denial of service in https MitM state management
