View at Official ubuntu advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2014-7141 low priority: Ubuntu including 2 source packages (squid, squid3), 10 status rows across 5 suites (lucid, precise, trusty, upstream, utopic): DNE 3, not-affected 3, needs-triage 2, released 2.
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.