Lucene search
+L

6134 matches found

Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.14 views

PT-2026-49605

Name of the Vulnerable Software and Affected Versions Squid versions prior to 7.6 Description A memory leak issue, dubbed Squidbleed, exists in the Squid web proxy due to an out-of-bounds read in the FTP directory-listing parser. The flaw originates from a 1997 code change and a misunderstanding ...

6.8CVSS6.7AI score
Exploits1References92
OSV
OSV
added 2026/04/16 10:22 a.m.7 views

RHSA-2026:8317 Red Hat Security Advisory: squid:4 security update

Bulletin has no description...

7.5CVSS5.7AI score0.08942EPSS
Exploits0References17
Rockylinux
Rockylinux
added 2026/04/16 12:1 a.m.7 views

squid:4 security update

An update is available for squid, libecap, module.libecap, module.squid. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy cachin...

9.2CVSS5.8AI score0.08942EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.8 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: squid (UTSA-2026-007175)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007175 advisory. Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out of bounds read when handling ICP traffic. Th...

6.9CVSS5.8AI score0.01039EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2026/04/16 12:0 a.m.11 views

squid:4 security update

libecap 1.0.1-2 - Resolves: 1695587 - Ensure modular RPM upgrade path 1.0.1-1 - new version 1.0.1 - autoconf.h moved from lookaside to dist-git 1.0.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora27BinutilsMassRebuild 1.0.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild...

9.2CVSS5.8AI score0.88864EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.8 views

RockyLinux 8 : squid:4 (RLSA-2026:8317)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:8317 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: squid (UTSA-2026-007171)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007171 advisory. Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to Denial of Service when handling ICP traffic. This...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.6 views

RHEL 8 : squid:4 (RHSA-2026:8317)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:8317 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denia...

9.2CVSS5.9AI score0.08942EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.7 views

AlmaLinux 8 : squid:4 (ALSA-2026:8317)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:8317 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traff...

9.2CVSS5.9AI score0.08942EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/15 2:42 p.m.7 views

squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling

A flaw was found in Squid. A remote attacker can exploit a heap Use-After-Free vulnerability when handling ICP Internet Cache Protocol traffic. This allows them to perform a reliable and repeatable Denial of Service DoS attack, making the Squid service unavailable. This attack is limited to...

9.2CVSS5.7AI score0.08942EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/04/15 2:42 p.m.8 views

Squid: Squid: Denial of Service via crafted ICP traffic

A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...

8.7CVSS5.7AI score0.08931EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/04/15 2:42 p.m.9 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References3
OSV
OSV
added 2026/04/15 12:7 p.m.9 views

RLSA-2026:8119 Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

7.5CVSS5.8AI score0.08942EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2026/04/15 12:7 p.m.12 views

squid security update

An update is available for squid. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy caching server for web clients, supporting...

9.2CVSS5.8AI score0.08942EPSS
Exploits0
OSV
OSV
added 2026/04/15 10:10 a.m.4 views

RHSA-2026:8119 Red Hat Security Advisory: squid security update

Bulletin has no description...

7.5CVSS5.7AI score0.08942EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.9 views

RockyLinux 10 : squid (RLSA-2026:8119)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:8119 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...

9.2CVSS5.9AI score0.08942EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.8 views

AlmaLinux 10 : squid (ALSA-2026:8119)

The remote AlmaLinux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:8119 advisory. squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP...

9.2CVSS5.9AI score0.08942EPSS
Exploits0References4
OSV
OSV
added 2026/04/15 12:0 a.m.8 views

ALSA-2026:8317 Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/14 3:9 p.m.6 views

squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling

A flaw was found in Squid. A remote attacker can exploit a heap Use-After-Free vulnerability when handling ICP Internet Cache Protocol traffic. This allows them to perform a reliable and repeatable Denial of Service DoS attack, making the Squid service unavailable. This attack is limited to...

9.2CVSS5.7AI score0.08942EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/04/14 3:9 p.m.5 views

Squid: Squid: Denial of Service via crafted ICP traffic

A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...

8.7CVSS5.7AI score0.08931EPSS
Exploits0References7
Rows per page
Query Builder