{"id":"CVE-2014-7141","details":"The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.","modified":"2026-04-16T01:38:18.785383931Z","published":"2014-11-26T15:59:03Z","withdrawn":"2026-01-27T04:13:18.679966Z","related":["SUSE-SU-2016:2089-1","openSUSE-SU-2024:10307-1"],"references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/60242"},{"type":"FIX","url":"http://ubuntu.com/usn/usn-2422-1"},{"type":"ADVISORY","url":"http://www.squid-cache.org/Advisories/SQUID-2014_4.txt"},{"type":"REPORT","url":"https://bugzilla.novell.com/show_bug.cgi?id=891268"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html"},{"type":"WEB","url":"http://seclists.org/oss-sec/2014/q3/539"},{"type":"WEB","url":"http://seclists.org/oss-sec/2014/q3/612"},{"type":"WEB","url":"http://seclists.org/oss-sec/2014/q3/626"},{"type":"WEB","url":"http://www.securityfocus.com/bid/69688"}],"schema_version":"1.7.3"}