rpm package

suse/squid&distro=SUSE Linux Enterprise Module for Server Applications 15 SP6

pkg:rpm/suse/squid&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6

Vulnerabilities (3)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2025-62168	—	< 6.10-150600.3.14.1	6.10-150600.3.14.1	Oct 17, 2025	Squid is a caching proxy for the Web. In Squid versions prior to 7.2, a failure to redact HTTP authentication credentials in error handling allows information disclosure. The vulnerability allows a script to bypass browser security protections and learn the credentials a trusted
CVE-2025-59362	—	< 6.10-150600.3.9.1	6.10-150600.3.9.1	Sep 26, 2025	Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.
CVE-2024-37894	—	< 6.10-150600.3.6.1	6.10-150600.3.6.1	Jun 25, 2024	Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack.

CVE-2025-62168Oct 17, 2025
affected < 6.10-150600.3.14.1fixed 6.10-150600.3.14.1
Squid is a caching proxy for the Web. In Squid versions prior to 7.2, a failure to redact HTTP authentication credentials in error handling allows information disclosure. The vulnerability allows a script to bypass browser security protections and learn the credentials a trusted
CVE-2025-59362Sep 26, 2025
affected < 6.10-150600.3.9.1fixed 6.10-150600.3.9.1
Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.
CVE-2024-37894Jun 25, 2024
affected < 6.10-150600.3.6.1fixed 6.10-150600.3.6.1
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack.