6134 matches found
PT-2026-49605
Name of the Vulnerable Software and Affected Versions Squid versions prior to 7.6 Description A memory leak issue, dubbed Squidbleed, exists in the Squid web proxy due to an out-of-bounds read in the FTP directory-listing parser. The flaw originates from a 1997 code change and a misunderstanding ...
RHSA-2026:8317 Red Hat Security Advisory: squid:4 security update
Bulletin has no description...
squid:4 security update
An update is available for squid, libecap, module.libecap, module.squid. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy cachin...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: squid (UTSA-2026-007175)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007175 advisory. Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out of bounds read when handling ICP traffic. Th...
squid:4 security update
libecap 1.0.1-2 - Resolves: 1695587 - Ensure modular RPM upgrade path 1.0.1-1 - new version 1.0.1 - autoconf.h moved from lookaside to dist-git 1.0.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora27BinutilsMassRebuild 1.0.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild...
RockyLinux 8 : squid:4 (RLSA-2026:8317)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:8317 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: squid (UTSA-2026-007171)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007171 advisory. Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to Denial of Service when handling ICP traffic. This...
RHEL 8 : squid:4 (RHSA-2026:8317)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:8317 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denia...
AlmaLinux 8 : squid:4 (ALSA-2026:8317)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:8317 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traff...
squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling
A flaw was found in Squid. A remote attacker can exploit a heap Use-After-Free vulnerability when handling ICP Internet Cache Protocol traffic. This allows them to perform a reliable and repeatable Denial of Service DoS attack, making the Squid service unavailable. This attack is limited to...
Squid: Squid: Denial of Service via crafted ICP traffic
A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...
Important: Red Hat Security Advisory: squid:4 security update
An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
RLSA-2026:8119 Important: squid security update
Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...
squid security update
An update is available for squid. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy caching server for web clients, supporting...
RHSA-2026:8119 Red Hat Security Advisory: squid security update
Bulletin has no description...
RockyLinux 10 : squid (RLSA-2026:8119)
The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:8119 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...
AlmaLinux 10 : squid (ALSA-2026:8119)
The remote AlmaLinux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:8119 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...
ALSA-2026:8317 Important: squid:4 security update
Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...
squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling
A flaw was found in Squid. A remote attacker can exploit a heap Use-After-Free vulnerability when handling ICP Internet Cache Protocol traffic. This allows them to perform a reliable and repeatable Denial of Service DoS attack, making the Squid service unavailable. This attack is limited to...
Squid: Squid: Denial of Service via crafted ICP traffic
A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...