CLSA-2026-1776174481

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1776174481.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1776174481

Upstream

CVE-2026-32748

CVE-2026-33515

CVE-2026-33526

Published

2026-04-14T13:48:06Z

Modified

2026-06-01T00:33:21.560546890Z

Summary

squid: Fix of 3 CVEs

Details

CVE-2026-32748: ICP: fix HttpRequest lifetime for ICP v3 queries
CVE-2026-33515: ICP: fix validation of packet sizes and URLs
CVE-2026-33526: do not escape malformed URI twice when sending ICP errors

References

https://errata.tuxcare.com/els_os/centos8.4els/CLSA-2026-1776174481.html

Affected packages

TuxCare:CentOS:8.4 / squid

Package

Name: squid
Purl: pkg:rpm/tuxcare/squid?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7:4.11-4.module_el8.4.0+2368+2ccdb625.2.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1776174481.json"