16 matches found
CLSA-2026-1777384121 squid: Fix of 3 CVEs
CVE-2019-12521: fix ESI parser off-by-one heap overflow by enforcing a stack-depth limit and throwing on overflow - CVE-2019-12524 already addressed by the CVE-2019-12520 backport same fix upstream; see Squid advisory SQUID-2019:4...
CLSA-2026-1775040191 squid: Fix of CVE-2026-32748
CVE-2026-32748: fix HttpRequest lifetime for ICP v3 queries...
CLSA-2026-1774946829 squid: Fix of 3 CVEs
CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS - CVE-2026-33515: fix out-of-bounds read in ICP message handling leaking sensitive information - CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS...
DLA-4369-1 squid - security update
Bulletin has no description...
CLSA-2025-1757076484 squid: Fix of CVE-2025-54574
CVE-2025-54574: fix buffer overflow in URN handling...
CLSA-2025-1747855403 squid: Fix of 6 CVEs
CVE-2021-28651: fix memory leak in RFC 2169 response parsing - CVE-2021-28652: fix broken cache manager URL parsing - CVE-2021-31806: fix memory management bug - CVE-2021-31807: fix integer overflow problem - CVE-2021-31808: fix input validation bug - CVE-2021-33620: handle more partial responses...
CLSA-2025-1741034026 squid: Fix of CVE-2023-49288
CVE-2023-49288: fix Denial of Service in HTTP Collapsed Forwarding...
CLSA-2024-1710436968 squid: Fix of CVE-2024-25617
CVE-2024-25617: Improve handling of expanding HTTP header values to prevent DoS...
CLSA-2023-1703182573 squid: Fix of 2 CVEs
CVE-2023-49285: Fix date parsing in RFC 1123 to prevent Buffer OverRead - CVE-2023-49286: Fix DoS attack against Helper process management...
CLSA-2023-1700592975 squid: Fix of CVE-2023-46724
CVE-2023-46724: Fix validation of certificates with CN=...
CLSA-2023-1700164396 squid: Fix of CVE-2023-46847
CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...
CLSA-2023-1700161280 squid: Fix of 3 CVEs
CVE-2023-46846: Improve HTTP chunked encoding compliance - CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization - CVE-2023-46848: Fix userinfo percent-encoding...
CLSA-2022-1665680640 Fixed CVE-2022-41318 in squid-4.module_el8.4.0+2078+2063f9d1.2.tuxcare.els4
CVE-2022-41318: Fix buffer-over-read in SSPI and SMB authentication...
CLSA-2022-1665680517 Fixed CVE-2022-41318 in squid-1.module_el8.5.0+2079+24c223d9.tuxcare.els3
CVE-2022-41318: Fix buffer-over-read in SSPI and SMB authentication...
CLSA-2022-1658856112 Fixed CVE-2021-46784 in squid-1.module_el8.5.0+2073+24c223d9.tuxcare.els2
CVE-2021-46784: Fix DoS when processing gopher server responses...
CLSA-2021-1634925554 Fixed CVEs in squid: CVE-2020-8517, CVE-2020-8450, CVE-2020-8449
CVE-2020-8449: fix improper HTTP request validation allowing access to resources which are prohibited by security filters - CVE-2020-8450: fix incorrect buffer managment leading to buffer overflow - CVE-2020-8517: fix incorrect input validation allowing writing outside of buffer and leading to...