Sakamakon binciken tsaro mai zaman kansa na buɗewar uwar garken wakili na Squid, wanda aka gudanar a cikin 2021, an buga shi. A yayin da ake duba ginshikin aikin, an gano nakasuwa guda 55, wadanda har yanzu masu ci gaba ba su magance matsalolin 35 ba (0-day). An sanar da masu haɓaka Squid matsalolin matsalolin shekaru biyu da rabi da suka wuce, amma ba su kammala aikin gyara su ba. A ƙarshe, marubucin binciken ya yanke shawarar bayyana bayanan ba tare da jira a gyara duk matsalolin ba kuma ya sanar da masu haɓaka Squid game da wannan a gaba.
Daga cikin raunin da aka gano:
- Matsakaicin tari a cikin aiwatar da Tabbatar da Digest yana faruwa lokacin da aka sarrafa Proxy-Authorization HTTP header tare da ƙimar filin Digest nc mai girma da yawa.
- Samun dama ga ƙwaƙwalwar ajiya bayan an 'yantar da ita a cikin na'ura mai sarrafa tambaya tare da hanyar TRACE.
- Samun damar ƙwaƙwalwar ajiya bayan yantawa lokacin sarrafa buƙatun HTTP tare da taken "Range" (CVE-2021-31807).
- Tari ambaliya yayin sarrafa taken X-Forwarded-For HTTP.
- Tari ambaliya lokacin sarrafa tambayoyin da aka yanke.
- Samun dama ga ƙwaƙwalwar ajiya bayan an 'yantar da shi a cikin mahallin gidan yanar gizon CacheManager.
- Matsakaicin adadin lamba a cikin Range HTTP mai kula da kai (CVE-2021-31808).
- Samun damar žwažwalwar ajiya bayan yantar da buffer da ambaliya a cikin ESI (Edge Side Ya haɗa da) mai sarrafa magana.
- Yawancin ƙwanƙwasa ƙwaƙwalwar ajiya, buffer ya cika lokacin karantawa, da matsalolin da ke haifar da faɗuwa.
source: budenet.ru
