CLSA-2026-1774946829

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2026-1774946829.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2026-1774946829
Upstream
Published
2026-03-31T08:47:13Z
Modified
2026-06-01T00:33:16.798039077Z
Summary
squid: Fix of 3 CVEs
Details
  • CVE-2026-33526: fix heap Use-After-Free in ICP traffic handling causing DoS
  • CVE-2026-33515: fix out-of-bounds read in ICP message handling leaking sensitive information
  • CVE-2026-32748: fix HttpRequest lifetime in ICP v3 queries preventing Use-After-Free DoS
References

Affected packages

TuxCare:CentOS:6 / squid

Package

Name
squid
Purl
pkg:rpm/tuxcare/squid?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7:3.1.23-30.el6.tuxcare.els16

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2026-1774946829.json"