MGASA-2026-0094
- Source
- https://advisories.mageia.org/MGASA-2026-0094.html
- Import Source
- https://advisories.mageia.org/MGASA-2026-0094.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2026-0094
- Upstream
- Published
- 2026-04-12T05:23:15Z
- Modified
- 2026-04-16T00:10:07.838052019Z
- Summary
- Updated squid packages fix security vulnerabilities
- Details
-
Squid mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asnbuildobjid in lib/snmplib/asn1.c. (CVE-2025-59362) Squid vulnerable to information disclosure via authentication credential leakage in error handling. (CVE-2025-62168) Squid vulnerable to Denial of Service in ICP Request handling. (CVE-2026-33526) Squid has Denial of Service in ICP Response handling. (CVE-2026-32748) Squid has issues in ICP message handling. (CVE-2026-33515)
- References
-
- https://advisories.mageia.org/MGASA-2026-0094.html
- https://bugs.mageia.org/show_bug.cgi?id=35271
- https://www.openwall.com/lists/oss-security/2026/03/25/2
- https://www.openwall.com/lists/oss-security/2026/03/25/3
- https://www.openwall.com/lists/oss-security/2026/03/25/4
- https://ubuntu.com/security/notices/USN-8157-1
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:9 / squid
Package
- Name
- squid
- Purl
- pkg:rpm/mageia/squid?arch=source&distro=mageia-9