Explore top 10 tips to secure your open-source projects now. Read More
×
Several security issues were fixed in Squid.
Software Description:
- squid: Web proxy cache server
Details:
It was discovered that Squid incorrectly handled FTP gateway processing
under certain circumstances, which could result in an out-of-bounds read. A
remote attacker could use this issue to cause Squid to crash, resulting in
a denial of service, or possibly obtain sensitive information.
(CVE-2026-47729)
It was discovered that Squid incorrectly handled cache digest processing
under certain circumstances, which could result in a heap-based buffer
overflow. A remote attacker could use this issue to cause Squid to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2026-50012)
The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS squid 7.2-2ubuntu2.2 Ubuntu 25.10 squid 6.14-0ubuntu0.25.10.4 Ubuntu 24.04 LTS squid 6.14-0ubuntu0.24.04.4 Ubuntu 22.04 LTS squid 5.9-0ubuntu0.22.04.7 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-8435-1
CVE-2026-47729, CVE-2026-50012
Get the latest Linux and open source security news straight to your inbox.