kho qhov tso cai tso tawm , uas kho 5 vulnerabilities. Ib qhov tsis zoo (CVE-2019-12527) muaj peev xwm npaj cov lej ua tiav nrog cov cai ntawm cov txheej txheem server.
Qhov teeb meem yog tshwm sim los ntawm kab laum nyob rau hauv HTTP Basic authentication handler thiab tso cai rau ib tug tsis txaus overflow yuav tshwm sim thaum hla tshwj xeeb crafted credentials thaum nkag mus rau Squid Cache
Tus thawj tswj lossis built-in FTP rooj vag. Qhov tsis zoo tshwm sim pib nrog kev tso tawm Squid 4.0.23. Raws li kev ua haujlwm rau kev thaiv qhov tsis zoo, koj tuaj yeem tsim kho squid nrog "--disable-auth-basic" kev xaiv lossis lov tes taw kev nkag mus rau cov kev pabcuam uas siv HTTP authentication hauv kev teeb tsa:
acl FTP proto FTP
http_access tsis lees paub FTP
http_access deny manager
Lwm qhov peb qhov tsis zoo tuaj yeem ua rau tsis lees paub qhov kev pabcuam thaum tswj hwm cachemgr.cgi, HTTP Digest lossis HTTP Basic authentication. Qhov tsis txaus ntseeg ntxiv tso cai rau kev sau ntawv hla chaw ntawm cachemgr.cgi.
Tau qhov twg los: opennet.ru