CVE-2023-50269 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2023-50269 Interim 1 18 2026-03-05T03:32:32Z current 2023-12-16T00:09:04Z 2026-03-05T03:32:32Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2023-50269 Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to perform Denial of Service attack by sending a large X-Forwarded-For header when the follow_x_forwarded_for feature is configured. This bug is fixed by Squid version 6.6. In addition, patches addressing this problem for the stable releases can be found in Squid's patch archives. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://github.com/squid-cache/squid/security/advisories//GHSA-wgq4-4cfg-c4x3 E-Mail link for GHSA-wgq4-4cfg-c4x3 https://lists.suse.com/pipermail/sle-security-updates/2024-February/017836.html E-Mail link for SUSE-SU-2024:0296-1 https://lists.suse.com/pipermail/sle-security-updates/2024-February/017840.html E-Mail link for SUSE-SU-2024:0298-1 https://lists.suse.com/pipermail/sle-security-updates/2024-February/017906.html E-Mail link for SUSE-SU-2024:0455-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings Image SLES15-SP4-Manager-Proxy-4-3-BYOS Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE SUSE Enterprise Storage 7.1 SUSE Liberty Linux 7 SUSE Liberty Linux 7 LTSS SUSE Liberty Linux 8 SUSE Liberty Linux 9 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Module for Server Applications 15 SP5 SUSE Linux Enterprise Module for Server Applications 15 SP7 SUSE Linux Enterprise Real Time 15 SP3 SUSE Linux Enterprise Server 11 SP4 LTSS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3-LTSS-TERADATA SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP4-TERADATA SUSE Linux Enterprise Module for Server Applications 15 SP5 SUSE Linux Enterprise Module for Server Applications 15 SP7 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Module for Server Applications 15 SP5 SUSE Linux Enterprise Module for Server Applications 15 SP7 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9 openSUSE Leap 15.5 openSUSE Tumbleweed libecap-1.0.1-2.module+el8.9.0+19703+a1da7223 libecap-devel-1.0.1-2.module+el8.9.0+19703+a1da7223 squid squid-3.5.20-17.el7_9.10 squid-3.5.21-26.47.1 squid-4.15-7.module+el8.9.0+21530+59b09a5b.10 squid-4.17-150000.5.49.1 squid-4.17-30.18.1 squid-4.17-4.41.1 squid-5.5-6.el9_3.8 squid-5.7-150400.3.23.1 squid-6.10-150600.3.6.1 squid-6.12-160000.2.2 squid-6.6-2.1 squid-migration-script-3.5.20-17.el7_9.10 squid-sysvinit-3.5.20-17.el7_9.10 squid3 squid-5.7-150400.3.23.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS squid-5.7-150400.3.23.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure squid-5.7-150400.3.23.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 squid-5.7-150400.3.23.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE squid-4.17-150000.5.49.1 as a component of SUSE Enterprise Storage 7.1 squid-3.5.20-17.el7_9.10 as a component of SUSE Liberty Linux 7 squid-migration-script-3.5.20-17.el7_9.10 as a component of SUSE Liberty Linux 7 squid-sysvinit-3.5.20-17.el7_9.10 as a component of SUSE Liberty Linux 7 squid-3.5.20-17.el7_9.10 as a component of SUSE Liberty Linux 7 LTSS squid-migration-script-3.5.20-17.el7_9.10 as a component of SUSE Liberty Linux 7 LTSS squid-sysvinit-3.5.20-17.el7_9.10 as a component of SUSE Liberty Linux 7 LTSS libecap-1.0.1-2.module+el8.9.0+19703+a1da7223 as a component of SUSE Liberty Linux 8 libecap-devel-1.0.1-2.module+el8.9.0+19703+a1da7223 as a component of SUSE Liberty Linux 8 squid-4.15-7.module+el8.9.0+21530+59b09a5b.10 as a component of SUSE Liberty Linux 8 squid-5.5-6.el9_3.8 as a component of SUSE Liberty Linux 9 squid-4.17-150000.5.49.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS squid-4.17-150000.5.49.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS squid-5.7-150400.3.23.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS squid-5.7-150400.3.23.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS squid-5.7-150400.3.23.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 squid-6.10-150600.3.6.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 squid-3.5.21-26.47.1 as a component of SUSE Linux Enterprise Server 12 SP3-LTSS-TERADATA squid-4.17-30.18.1 as a component of SUSE Linux Enterprise Server 12 SP3-TERADATA squid-4.17-4.41.1 as a component of SUSE Linux Enterprise Server 12 SP5 squid-4.17-150000.5.49.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS squid-4.17-150000.5.49.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS squid-5.7-150400.3.23.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS squid-5.7-150400.3.23.1 as a component of SUSE Linux Enterprise Server 15 SP4-TERADATA squid-6.12-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 squid-4.17-4.41.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 squid-4.17-150000.5.49.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 squid-4.17-150000.5.49.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 squid-5.7-150400.3.23.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 squid-5.7-150400.3.23.1 as a component of SUSE Manager Proxy 4.3 squid-5.7-150400.3.23.1 as a component of SUSE Manager Retail Branch Server 4.3 squid-5.7-150400.3.23.1 as a component of SUSE Manager Server 4.3 squid-5.7-150400.3.23.1 as a component of openSUSE Leap 15.5 squid-6.6-2.1 as a component of openSUSE Tumbleweed squid as a component of SUSE Linux Enterprise Real Time 15 SP3 squid as a component of SUSE Linux Enterprise Server 11 SP4 LTSS squid3 as a component of SUSE Linux Enterprise Server 11 SP4 LTSS squid as a component of SUSE Linux Enterprise Server 12 SP2-LTSS squid as a component of SUSE Linux Enterprise Server 12 SP4-LTSS squid as a component of SUSE Linux Enterprise Server 15-LTSS squid as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 squid as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 squid as a component of SUSE Manager Proxy 4.2 squid as a component of SUSE Manager Retail Branch Server 4.2 squid as a component of SUSE Manager Server 4.2 squid as a component of SUSE OpenStack Cloud 9 squid as a component of SUSE OpenStack Cloud Crowbar 9 Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to perform Denial of Service attack by sending a large X-Forwarded-For header when the follow_x_forwarded_for feature is configured. This bug is fixed by Squid version 6.6. In addition, patches addressing this problem for the stable releases can be found in Squid's patch archives. CVE-2023-50269 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:squid-5.7-150400.3.23.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure:squid-5.7-150400.3.23.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:squid-5.7-150400.3.23.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE:squid-5.7-150400.3.23.1 SUSE Enterprise Storage 7.1:squid-4.17-150000.5.49.1 SUSE Liberty Linux 7:squid-3.5.20-17.el7_9.10 SUSE Liberty Linux 7:squid-migration-script-3.5.20-17.el7_9.10 SUSE Liberty Linux 7:squid-sysvinit-3.5.20-17.el7_9.10 SUSE Liberty Linux 7 LTSS:squid-3.5.20-17.el7_9.10 SUSE Liberty Linux 7 LTSS:squid-migration-script-3.5.20-17.el7_9.10 SUSE Liberty Linux 7 LTSS:squid-sysvinit-3.5.20-17.el7_9.10 SUSE Liberty Linux 8:libecap-1.0.1-2.module+el8.9.0+19703+a1da7223 SUSE Liberty Linux 8:libecap-devel-1.0.1-2.module+el8.9.0+19703+a1da7223 SUSE Liberty Linux 8:squid-4.15-7.module+el8.9.0+21530+59b09a5b.10 SUSE Liberty Linux 9:squid-5.5-6.el9_3.8 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:squid-4.17-150000.5.49.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:squid-4.17-150000.5.49.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:squid-5.7-150400.3.23.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:squid-5.7-150400.3.23.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:squid-5.7-150400.3.23.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:squid-6.10-150600.3.6.1 SUSE Linux Enterprise Server 12 SP3-LTSS-TERADATA:squid-3.5.21-26.47.1 SUSE Linux Enterprise Server 12 SP3-TERADATA:squid-4.17-30.18.1 SUSE Linux Enterprise Server 12 SP5:squid-4.17-4.41.1 SUSE Linux Enterprise Server 15 SP2-LTSS:squid-4.17-150000.5.49.1 SUSE Linux Enterprise Server 15 SP3-LTSS:squid-4.17-150000.5.49.1 SUSE Linux Enterprise Server 15 SP4-LTSS:squid-5.7-150400.3.23.1 SUSE Linux Enterprise Server 15 SP4-TERADATA:squid-5.7-150400.3.23.1 SUSE Linux Enterprise Server 16.0:squid-6.12-160000.2.2 SUSE Linux Enterprise Server for SAP Applications 12 SP5:squid-4.17-4.41.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:squid-4.17-150000.5.49.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:squid-4.17-150000.5.49.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:squid-5.7-150400.3.23.1 SUSE Manager Proxy 4.3:squid-5.7-150400.3.23.1 SUSE Manager Retail Branch Server 4.3:squid-5.7-150400.3.23.1 SUSE Manager Server 4.3:squid-5.7-150400.3.23.1 openSUSE Leap 15.5:squid-5.7-150400.3.23.1 openSUSE Tumbleweed:squid-6.6-2.1 important 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H