[squid-dev] CVE-2019-12522
Amos Jeffries
squid3 at treenet.co.nz
Fri Mar 4 04:43:26 UTC 2022
On 4/03/22 00:39, Eliezer Croitoru wrote:
> I'm still trying to understand why it's described as "exploitable" ???
> It's like saying: The Linux Kernel should not be a kernel and init(or
> equivalent) should not run with uid 0 or 1.
> Why nobody complains about cockpit being a root process??
>
This explains the _type_ of problem
<https://secureteam.co.uk/articles/how-return-oriented-programming-exploits-work/>.
Most Squid are automatically protected against it by at least one of OS
or compiler systems. But some can still be vulnerable, as shown by Jerkio.
Amos
More information about the squid-dev
mailing list