vulnerability

Red Hat: CVE-2023-5824: squid: DoS against HTTP and HTTPS (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	Nov 3, 2023	Nov 23, 2023	Nov 14, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

Nov 3, 2023

Added

Nov 23, 2023

Modified

Nov 14, 2025

Description

A flaw was found in Squid. The limits applied for validation of HTTP response headers are applied before caching. However, Squid may grow a cached HTTP response header beyond the configured maximum size, causing a stall or crash of the worker process when a large header is retrieved from the disk cache, resulting in a denial of service.

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-libecapredhat-upgrade-libecap-debuginforedhat-upgrade-libecap-debugsourceredhat-upgrade-libecap-develredhat-upgrade-squidredhat-upgrade-squid-debuginforedhat-upgrade-squid-debugsource

References

CWE-755
NVD-CVE-2023-5824
REDHAT-RHSA-2023:7465
REDHAT-RHSA-2023:7668
REDHAT-RHSA-2024:0072
REDHAT-RHSA-2024:0397
REDHAT-RHSA-2024:0771
REDHAT-RHSA-2024:1153

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today