发布日期：2009-02-02
更新日期：2009-02-10

受影响系统：

Squid Web Proxy Cache 3.1
Squid Web Proxy Cache 3.0
Squid Web Proxy Cache 2.7

不受影响系统：

Squid Web Proxy Cache 3.1.0.5
Squid Web Proxy Cache 3.0.STABLE13
Squid Web Proxy Cache 2.7.STABLE6

描述：

---

BUGTRAQ  ID: 33604
CVE(CAN) ID: CVE-2009-0478

Squid是一个高效的Web缓存及代理程序，最初是为Unix平台开发的，现在也被移植到Linux和大多数的Unix类系统中，最新的Squid可以运行在Windows平台下。

Squid没有正确地处理畸形的HTTP版本号，远程客户端可以向服务器发送特制请求导致拒绝服务的情况。

<*来源：Joshua Morin
  
  链接：http://secunia.com/advisories/33731/
        http://www.squid-cache.org/Advisories/SQUID-2009_1.txt
        http://www.debian.org/security/2009/dsa-1732
        http://security.gentoo.org/glsa/glsa-200903-38.xml
*>

测试方法：

---

警 告

以下程序(方法)可能带有攻击性，仅供安全研究与教学之用。使用者风险自负！

http://www.milw0rm.com/exploits/8021

建议：

---

厂商补丁：

Debian
------
Debian已经为此发布了一个安全公告（DSA-1732-1）以及相应补丁:
DSA-1732-1：New squid3 packages fix denial of service
链接：http://www.debian.org/security/2009/dsa-1732

补丁下载：
Source archives:

http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5.orig.tar.gz
Size/MD5 checksum:  3061614 35cc83c17afb17c4718ffc8d0d71bcae
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1.diff.gz
Size/MD5 checksum:    13354 4993554616685c3596d9f96eb12d53c1
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1.dsc
Size/MD5 checksum:      735 98fac484b56ec7ee5f69ad6336656e28

Architecture independent packages:

http://security.debian.org/pool/updates/main/s/squid3/squid3-common_3.0.PRE5-5+etch1_all.deb
Size/MD5 checksum:   248732 2b26e7e28cefe82d5c7a94d7cdb73c74

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_alpha.deb
Size/MD5 checksum:    66928 73ba707ff043dabf778d8839591ff00c
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_alpha.deb
Size/MD5 checksum:   887986 246a0992ee6867cba9b5bd90ae3bb167
http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_alpha.deb
Size/MD5 checksum:    71404 11af955fd5604bd2595fcce41e6d4632

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_amd64.deb
Size/MD5 checksum:    64534 3bb28edd86a31e8fdfb37551631f3da8
http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_amd64.deb
Size/MD5 checksum:    68328 798fa101699710b329935a78bf0cd0ea
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_amd64.deb
Size/MD5 checksum:   792302 78aa4fae02843d22ee8784e5f1ee87cb

arm architecture (ARM)

http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_arm.deb
Size/MD5 checksum:    63484 d6f2107d20788bf7dd07abb9b206172c
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_arm.deb
Size/MD5 checksum:   769738 10d6ac7123424be28690c2030cbf5eb7
http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_arm.deb
Size/MD5 checksum:    67272 2fdd845095b8fa0cb3d9574e5fdb4bcd

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_hppa.deb
Size/MD5 checksum:    69974 604c4c10f65c185b89d1cff91136a32e
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_hppa.deb
Size/MD5 checksum:   929058 a90594d57f20ea12d7f1cd05fab538a4
http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_hppa.deb
Size/MD5 checksum:    66514 961004e071bff449058b1fcbbf11910c

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_i386.deb
Size/MD5 checksum:    64442 8f93ed7979e6346f09240bda0f8397fb
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_i386.deb
Size/MD5 checksum:   743098 85d673af4e6a9451acca3e519a057727
http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_i386.deb
Size/MD5 checksum:    68450 b4b71002a819ed312b5049f52f6b26af

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_ia64.deb
Size/MD5 checksum:  1185186 d0a0f2f96cdcaa68f64fb712e60e388a
http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_ia64.deb
Size/MD5 checksum:    76120 59e1000682f659bd8c279cdbb03aabbe
http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_ia64.deb
Size/MD5 checksum:    70344 70082e6f0d055c6fbc5bb659d291a59c

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_mipsel.deb
Size/MD5 checksum:    70014 2776662dce0de56454d4e19525c616fa
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_mipsel.deb
Size/MD5 checksum:   911840 16122bd2616f77ac6019dc142fe64157
http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_mipsel.deb
Size/MD5 checksum:    66332 1e67fe985396c482e963876626975523

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_powerpc.deb
Size/MD5 checksum:    69072 311a6d89f5e29f14319fde9d7aee364c
http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_powerpc.deb
Size/MD5 checksum:   819050 28e74d4371d39fa553c1ecacb282c7a3
http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_powerpc.deb
Size/MD5 checksum:    64818 35cbc5e8ebd78dc0294750d2e2d32d7a

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch1_s390.deb
Size/MD5 checksum:   787254 1303b619f1b56d7908fea5308c88669c
http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch1_s390.deb
Size/MD5 checksum:    65164 cc13b2a7b237ff84219a65760a8cca95
http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch1_s390.deb
Size/MD5 checksum:    69104 de5334329dbad3f151a6322b9ec6d2d0

补丁安装方法：

1. 手工安装补丁包：

  首先，使用下面的命令来下载补丁软件：
  # wget url  (url是补丁下载链接地址)

  然后，使用下面的命令来安装补丁：  
  # dpkg -i file.deb (file是相应的补丁名)

2. 使用apt-get自动安装补丁包：

   首先，使用下面的命令更新内部数据库：
   # apt-get update
  
   然后，使用下面的命令安装更新软件包：
   # apt-get upgrade

Squid
-----
目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：

Squid 2.7:
http://www.squid-cache.org/Versions/v2/2.7/changesets/12432.patch
http://www.squid-cache.org/Versions/v2/2.7/changesets/12442.patch

Squid 3.0:
http://www.squid-cache.org/Versions/v3/3.0/changesets/b8964.patch
http://www.squid-cache.org/Versions/v3/3.0/changesets/b8965.patch

Squid 3.1:
http://www.squid-cache.org/Versions/v3/3.1/changesets/b9414.patch
http://www.squid-cache.org/Versions/v3/3.1/changesets/b9418.patch

Gentoo
------
Gentoo已经为此发布了一个安全公告（GLSA-200903-38）以及相应补丁:
GLSA-200903-38：Squid: Multiple Denial of Service vulnerabilities
链接：http://security.gentoo.org/glsa/glsa-200903-38.xml

所有Squid用户都应升级到最新版本：

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=3Dnet-proxy/squid-2.7.6"

浏览次数：3006
严重程度：0（网友投票）