CVE-2005-1519

NameCVE-2005-1519
DescriptionSquid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-751-1
Debian Bugs309504

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
squid (PTS)bullseye4.13-10+deb11u3fixed
bullseye (security)4.13-10+deb11u4fixed
bookworm, bookworm (security)5.7-2+deb12u3fixed
trixie6.13-2fixed
forky, sid7.1-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
squidsourcewoody2.4.6-2woody9DSA-751-1
squidsource(unstable)2.5.9-9309504
Search for package or bug name: Reporting problems