ASA-2018-00012 – Squid: Denial of Service issue in SNMP processing

Due to a memory leak in SNMP query rejection code, Squid is vulnerable to a denial of service attack. This problem allows a remote attacker to consume all memory available to the Squid process, causing it to crash. In environments where per-process memory restrictions are not enforced strictly, or configured to large values this may also affect other processes operating on the same machine. Leading to a much worse denial of service situation. This problem is limited to Squid built with SNMP support and receiving SNMP traffic.