What the vulnerability does

01Description

A flaw was found in Privoxy in versions before 3.0.29. Dereference of a NULL-pointer that could result in a crash if accept-intercepted-requests was enabled, Privoxy failed to get the request destination from the Host header and a memory allocation failed.

Key dates

02Disclosure timeline

March 25, 2021 CVE published
August 3, 2024 Record updated