rpm package
suse/squid&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
pkg:rpm/suse/squid&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS
Vulnerabilities (6)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-62168 | — | < 5.7-150400.3.38.2 | 5.7-150400.3.38.2 | Oct 17, 2025 | Squid is a caching proxy for the Web. In Squid versions prior to 7.2, a failure to redact HTTP authentication credentials in error handling allows information disclosure. The vulnerability allows a script to bypass browser security protections and learn the credentials a trusted | ||
| CVE-2025-59362 | — | < 5.7-150400.3.35.1 | 5.7-150400.3.35.1 | Sep 26, 2025 | Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c. | ||
| CVE-2024-25111 | — | < 5.7-150400.3.26.1 | 5.7-150400.3.26.1 | Mar 6, 2024 | Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid may be vulnerable to a Denial of Service attack against HTTP Chunked decoder due to an uncontrolled recursion bug. This problem allows a remote attacker to cause Denial of Service when sending | ||
| CVE-2024-25617 | — | < 5.7-150400.3.26.1 | 5.7-150400.3.26.1 | Feb 14, 2024 | Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Collapse of Data into Unsafe Value bug ,Squid may be vulnerable to a Denial of Service attack against HTTP header parsing. This problem allows a remote client or a remote server to p | ||
| CVE-2024-23638 | — | < 5.7-150400.3.23.1 | 5.7-150400.3.23.1 | Jan 23, 2024 | Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error pag | ||
| CVE-2023-50269 | — | < 5.7-150400.3.23.1 | 5.7-150400.3.23.1 | Dec 14, 2023 | Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remo |
- CVE-2025-62168Oct 17, 2025affected < 5.7-150400.3.38.2fixed 5.7-150400.3.38.2
Squid is a caching proxy for the Web. In Squid versions prior to 7.2, a failure to redact HTTP authentication credentials in error handling allows information disclosure. The vulnerability allows a script to bypass browser security protections and learn the credentials a trusted
- CVE-2025-59362Sep 26, 2025affected < 5.7-150400.3.35.1fixed 5.7-150400.3.35.1
Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.
- CVE-2024-25111Mar 6, 2024affected < 5.7-150400.3.26.1fixed 5.7-150400.3.26.1
Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid may be vulnerable to a Denial of Service attack against HTTP Chunked decoder due to an uncontrolled recursion bug. This problem allows a remote attacker to cause Denial of Service when sending
- CVE-2024-25617Feb 14, 2024affected < 5.7-150400.3.26.1fixed 5.7-150400.3.26.1
Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Collapse of Data into Unsafe Value bug ,Squid may be vulnerable to a Denial of Service attack against HTTP header parsing. This problem allows a remote client or a remote server to p
- CVE-2024-23638Jan 23, 2024affected < 5.7-150400.3.23.1fixed 5.7-150400.3.23.1
Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error pag
- CVE-2023-50269Dec 14, 2023affected < 5.7-150400.3.23.1fixed 5.7-150400.3.23.1
Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remo