CLSA-2026-1777384121

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1777384121.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2026-1777384121
Upstream
Published
2026-04-28T13:48:46Z
Modified
2026-06-01T00:33:25.894597161Z
Summary
squid: Fix of 3 CVEs
Details
  • CVE-2019-12521: fix ESI parser off-by-one heap overflow by enforcing a stack-depth limit and throwing on overflow
  • CVE-2019-12524 already addressed by the CVE-2019-12520 backport (same fix upstream; see Squid advisory SQUID-2019:4)
References

Affected packages

TuxCare:OracleLinux:6 / squid

Package

Name
squid
Purl
pkg:rpm/tuxcare/squid?distro=oraclelinux-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7:3.1.23-30.el6.tuxcare.els18

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1777384121.json"