Lucene search
K

82 matches found

RedHat Linux
RedHat Linux
added 2026/04/20 3:44 a.m.7 views

squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling

A flaw was found in Squid. A remote attacker can exploit a heap Use-After-Free vulnerability when handling ICP Internet Cache Protocol traffic. This allows them to perform a reliable and repeatable Denial of Service DoS attack, making the Squid service unavailable. This attack is limited to...

9.2CVSS5.7AI score0.08942EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.7 views

RHEL 7 : squid (RHSA-2026:8880)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:8880 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denia...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References6
OSV
OSV
added 2026/04/16 12:1 a.m.9 views

RLSA-2026:8317 Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

7.5CVSS5.8AI score0.08942EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/15 2:42 p.m.8 views

Squid: Squid: Denial of Service via crafted ICP traffic

A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...

8.7CVSS5.7AI score0.08931EPSS
Exploits0References7
AlmaLinux
AlmaLinux
added 2026/04/15 12:0 a.m.12 views

Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References6
OSV
OSV
added 2026/04/15 12:0 a.m.8 views

ALSA-2026:8317 Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/14 3:9 p.m.6 views

squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling

A flaw was found in Squid. A remote attacker can exploit a heap Use-After-Free vulnerability when handling ICP Internet Cache Protocol traffic. This allows them to perform a reliable and repeatable Denial of Service DoS attack, making the Squid service unavailable. This attack is limited to...

9.2CVSS5.7AI score0.08942EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/04/14 3:9 p.m.5 views

Squid: Squid: Denial of Service via crafted ICP traffic

A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...

8.7CVSS5.7AI score0.08931EPSS
Exploits0References7
Oracle linux
Oracle linux
added 2026/04/14 12:0 a.m.12 views

squid security update

7:6.10-6.3 - Resolves: RHEL-160667 - squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 7:6.10-6.2 - Resolves: RHEL-160665 - squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526...

9.2CVSS5.8AI score0.08942EPSS
Exploits0
Amazon
Amazon
added 2026/04/14 12:0 a.m.14 views

Important: squid

Issue Overview: Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetime and heap Use-After-Free bugs, Squid is vulnerable to Denial of Service when handling ICP traffic. This problem allows a remote attacker to perform a reliable a...

9.2CVSS5.8AI score0.08942EPSS
Exploits0
OSV
OSV
added 2026/04/14 12:0 a.m.5 views

ALSA-2026:8119 Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References6
Mageia
Mageia
added 2026/04/12 5:23 a.m.12 views

Updated squid packages fix security vulnerabilities

Squid mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asnbuildobjid in lib/snmplib/asn1.c. CVE-2025-59362 Squid vulnerable to information disclosure via authentication credential leakage in error handling. CVE-2025-62168 Squid vulnerable to Denial of Service in ICP Request handling...

10CVSS6.6AI score0.62871EPSS
Exploits2References5
CloudLinux
CloudLinux
added 2026/04/09 1:55 p.m.10 views

squid34: Fix of 2 CVEs

CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS - CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS...

9.2CVSS5.8AI score0.08942EPSS
Exploits0
OSV
OSV
added 2026/04/08 8:59 p.m.9 views

CLSA-2026-1775209032 squid: Fix of 2 CVEs

CVE-2026-33515: fix validation of packet sizes and URLs in ICP - CVE-2026-33526: fix escaping malformed URI twice when sending ICP errors...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2026/04/08 12:37 p.m.8 views

USN-8157-1: Squid vulnerabilities

It was discovered that Squid incorrectly handled certain ICP traffic. In environments where ICP support is enabled, a remote attacker could use this issue to cause Squid to crash, resulting in a denial of service, or obtain small amounts of sensitive information...

9.2CVSS6AI score0.08942EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.10 views

RockyLinux 9 : squid (RLSA-2026:6301)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:6301 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...

9.2CVSS6AI score0.08942EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.28 views

RHEL 9 : squid (RHSA-2026:6301)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:6301 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denia...

9.2CVSS6AI score0.08942EPSS
Exploits0References6
OSV
OSV
added 2026/04/03 9:58 a.m.7 views

CLSA-2026-1775210281 squid: Fix of CVE-2026-32748

CVE-2026-32748: fix HttpRequest lifetime for ICP v3 queries...

8.7CVSS5.8AI score0.08931EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/03 12:0 a.m.8 views

MiracleLinux 9 : squid-5.5-22.el9_7.4 (AXSA:2026-387:02)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2026-387:02 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...

9.2CVSS6AI score0.08942EPSS
Exploits0References3
OSV
OSV
added 2026/04/01 4:48 p.m.8 views

CLSA-2026-1775062103 squid34: Fix of 2 CVEs

CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS - CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
Rows per page
Query Builder