{
  "threat_severity" : "Important",
  "public_date" : "2009-07-27T00:00:00Z",
  "bugzilla" : {
    "description" : "squid: multiple vulnerabilities fixed in squid 3.0.STABLE17",
    "id" : "514013",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=514013"
  },
  "details" : [ "Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 allows remote attackers to cause a denial of service via malformed requests including (1) \"missing or mismatched protocol identifier,\" (2) missing or negative status value,\" (3) \"missing version,\" or (4) \"missing or invalid status number,\" related to (a) HttpMsg.cc and (b) HttpReply.cc." ],
  "statement" : "Not vulnerable. This issue did not affect the versions of squid as shipped with Red Hat Enterprise Linux 3, 4, or 5.",
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2009-2622\nhttps://nvd.nist.gov/vuln/detail/CVE-2009-2622" ],
  "name" : "CVE-2009-2622",
  "csaw" : false
}