UBUNTU-CVE-2018-8005

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2018-8005

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-8005.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-8005

Upstream

CVE-2018-8005

Published

2018-08-29T13:29:00Z

Modified

2025-07-16T07:39:04.171509Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

When there are multiple ranges in a range request, Apache Traffic Server (ATS) will read the entire object from cache. This can cause performance problems with large objects in cache. This affects versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x users should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.

References

Affected packages

Ubuntu:Pro:16.04:LTS / trafficserver

Package

Name: trafficserver
Purl: pkg:deb/ubuntu/trafficserver@5.3.0-2ubuntu2?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.3.0-2ubuntu1

5.3.0-2ubuntu2

Ubuntu:Pro:18.04:LTS / trafficserver

Package

Name: trafficserver
Purl: pkg:deb/ubuntu/trafficserver@7.1.2+ds-3?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7.*

7.0.0-5

7.1.2+ds-2

7.1.2+ds-2build1

7.1.2+ds-3