Lucene search
K

12 matches found

OSV
OSV
added 2026/04/14 1:48 p.m.9 views

CLSA-2026-1776174481 squid: Fix of 3 CVEs

CVE-2026-32748: ICP: fix HttpRequest lifetime for ICP v3 queries - CVE-2026-33515: ICP: fix validation of packet sizes and URLs - CVE-2026-33526: do not escape malformed URI twice when sending ICP errors...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
OSV
OSV
added 2026/04/14 1:42 p.m.9 views

CLSA-2026-1776174115 squid: Fix of 3 CVEs

CVE-2026-32748: ICP: fix HttpRequest lifetime for ICP v3 queries - CVE-2026-33515: ICP: fix validation of packet sizes and URLs - CVE-2026-33526: do not escape malformed URI twice when sending ICP errors...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
CloudLinux
CloudLinux
added 2026/04/09 1:55 p.m.9 views

squid34: Fix of 2 CVEs

CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS - CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS...

9.2CVSS5.8AI score0.08942EPSS
Exploits0
OSV
OSV
added 2026/04/09 11:31 a.m.8 views

CLSA-2026-1775734284 Fix CVE(s): CVE-2026-32748, CVE-2026-33526

SECURITY UPDATE: denial of service via use-after-free in ICP - debian/patches/CVE-2026-33526.patch: remove duplicate rfc1738escape call in icpGetRequest that invalidated the previously escaped URL pointer - CVE-2026-33526 SECURITY UPDATE: denial of service via use-after-free in ICP request handli...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
OSV
OSV
added 2026/04/09 8:50 a.m.5 views

CLSA-2026-1775724625 Fix CVE(s): CVE-2026-32748, CVE-2026-33526

SECURITY UPDATE: denial of service via use-after-free in ICP - debian/patches/CVE-2026-33526.patch: remove duplicate rfc1738escape call in icpGetRequest that invalidated the previously escaped URL pointer - CVE-2026-33526 SECURITY UPDATE: denial of service via use-after-free in ICP request handli...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
OSV
OSV
added 2026/04/08 10:53 p.m.6 views

CLSA-2026-1775688811 Fix CVE(s): CVE-2026-32748, CVE-2026-33526

SECURITY UPDATE: denial of service via use-after-free in ICP - debian/patches/CVE-2026-33526.patch: remove duplicate rfc1738escape call in icpGetRequest that invalidated the previously escaped URL pointer - CVE-2026-33526 SECURITY UPDATE: denial of service via use-after-free in ICP request handli...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
CloudLinux
CloudLinux
added 2026/03/31 8:47 a.m.7 views

squid: Fix of 3 CVEs

CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS - CVE-2026-33515: fix out-of-bounds read in ICP message handling leaking sensitive information - CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS...

9.2CVSS5.9AI score0.08942EPSS
Exploits0
OSV
OSV
added 2026/03/31 8:47 a.m.8 views

CLSA-2026-1774946829 squid: Fix of 3 CVEs

CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS - CVE-2026-33515: fix out-of-bounds read in ICP message handling leaking sensitive information - CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
NVD
NVD
added 2025/05/20 4:15 p.m.15 views

CVE-2025-37949

In the Linux kernel, the following vulnerability has been resolved: xenbus: Use kref to track req lifetime Marek reported seeing a NULL pointer fault in the xenbusthread callstack: BUG: kernel NULL pointer dereference, address: 0000000000000000 RIP: e030:wakeupcommon+0x4c/0x180 Call Trace:...

5.5CVSS0.00162EPSS
Exploits0References10
OSV
OSV
added 2025/05/20 4:15 p.m.2 views

DEBIAN-CVE-2025-37949

In the Linux kernel, the following vulnerability has been resolved: xenbus: Use kref to track req lifetime Marek reported seeing a NULL pointer fault in the xenbusthread callstack: BUG: kernel NULL pointer dereference, address: 0000000000000000 RIP: e030:wakeupcommon+0x4c/0x180 Call Trace:...

5.5CVSS5.8AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.2 views

UBUNTU-CVE-2025-37949

In the Linux kernel, the following vulnerability has been resolved: xenbus: Use kref to track req lifetime Marek reported seeing a NULL pointer fault in the xenbusthread callstack: BUG: kernel NULL pointer dereference, address: 0000000000000000 RIP: e030:wakeupcommon+0x4c/0x180 Call Trace:...

5.5CVSS6.2AI score0.00162EPSS
Exploits0References38
Cvelist
Cvelist
added 2025/05/20 4:1 p.m.20 views

CVE-2025-37949 xenbus: Use kref to track req lifetime

In the Linux kernel, the following vulnerability has been resolved: xenbus: Use kref to track req lifetime Marek reported seeing a NULL pointer fault in the xenbusthread callstack: BUG: kernel NULL pointer dereference, address: 0000000000000000 RIP: e030:wakeupcommon+0x4c/0x180 Call Trace:...

0.00162EPSS
Exploits0References8
Rows per page
Query Builder