CVE-2011-3205 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2011-3205 Interim 1 16 2023-02-15T02:25:31Z current 2021-05-30T12:59:32Z 2023-02-15T02:25:31Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2011-3205 Buffer overflow in the gopherToHTML function in gopher.cc in the Gopher reply parser in Squid 3.0 before 3.0.STABLE26, 3.1 before 3.1.15, and 3.2 before 3.2.0.11 allows remote Gopher servers to cause a denial of service (memory corruption and daemon restart) or possibly have unspecified other impact via a long line in a response. NOTE: This issue exists because of a CVE-2005-0094 regression. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/opensuse-security-announce/2011-09/msg00013.html E-Mail link for SUSE-SU-2011:1019-1 https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html E-Mail link for SUSE-SU-2016:1996-1 https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html E-Mail link for SUSE-SU-2016:2089-1 https://lists.opensuse.org/opensuse-security-announce/2011-09/msg00012.html E-Mail link for openSUSE-SU-2011:1018-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4 squid3-3.1.12-8.10.1 squid3-3.1.12-8.12.1 squid3-3.1.23-8.16.30.1 squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA squid3-3.1.12-8.10.1 as a component of SUSE Linux Enterprise Server 11 SP2 squid3-3.1.12-8.12.1 as a component of SUSE Linux Enterprise Server 11 SP3 squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server 11 SP4 squid3-3.1.23-8.16.30.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP4 Buffer overflow in the gopherToHTML function in gopher.cc in the Gopher reply parser in Squid 3.0 before 3.0.STABLE26, 3.1 before 3.1.15, and 3.2 before 3.2.0.11 allows remote Gopher servers to cause a denial of service (memory corruption and daemon restart) or possibly have unspecified other impact via a long line in a response. NOTE: This issue exists because of a CVE-2005-0094 regression. CVE-2011-3205 SUSE Linux Enterprise Server 11 SP1-TERADATA:squid3-3.1.23-8.16.30.1 SUSE Linux Enterprise Server 11 SP2:squid3-3.1.12-8.10.1 SUSE Linux Enterprise Server 11 SP3:squid3-3.1.12-8.12.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:squid3-3.1.23-8.16.30.1 SUSE Linux Enterprise Server 11 SP4:squid3-3.1.23-8.16.30.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:squid3-3.1.23-8.16.30.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P