Squid Caching Proxy Security Audit: 55 Vulnerabilities, 35 0days.

Read Time:24 Second

Posted by Joshua Rogers on Oct 16

Dear fulldisclosure,

Two and a half years ago an independent audit was performed on The Squid
Caching Proxy, which ultimately resulted in 55 vulnerabilities being
discovered in the project’s C++ source code.

Although some of the issues have been fixed, the majority (35) remain
valid. The majority have not been assigned CVEs, and no patches or
workarounds are available. Some of the listed issues concern more than one
bug, which is why 45…

jupyterlab-4.4.0-1.fc43 python-notebook-7.4.0-1.fc43

FEDORA-2025-7472c8fb5c Packages in this update: jupyterlab-4.4.0-1.fc43 python-notebook-7.4.0-1.fc43 Update description: New jupyterlab and notebook Read More

April 11, 2025

Windows CLFS Driver Elevation of Privilege

What is the Vulnerability?A zero-day vulnerability has recently been identified in the Common Log File System (CLFS) kernel driver. CLFS...

April 11, 2025

USN-7432-1: libsoup vulnerabilities

It was discovered that libsoup could be made to read out of bounds. An attacker could possibly use this issue...

April 10, 2025

chromium-135.0.7049.84-1.fc40

FEDORA-2025-4ad8f5e805 Packages in this update: chromium-135.0.7049.84-1.fc40 Update description: Update to 135.0.7049.84 * CVE-2025-3066: Use after free in Site Isolation Read...

April 10, 2025

chromium-135.0.7049.84-1.el10_1

FEDORA-EPEL-2025-d2ac333cd9 Packages in this update: chromium-135.0.7049.84-1.el10_1 Update description: Update to 135.0.7049.84 * CVE-2025-3066: Use after free in Site Isolation Read...

April 10, 2025

chromium-135.0.7049.84-1.el9

FEDORA-EPEL-2025-6930d627d4 Packages in this update: chromium-135.0.7049.84-1.el9 Update description: Update to 135.0.7049.84 * CVE-2025-3066: Use after free in Site Isolation Read...

April 10, 2025

Cyble Urges Critical Vulnerability Fixes Affecting Industrial Systems

Reimagining Democracy

China-based SMS Phishing Triad Pivots to Banks

Google Cloud: China Achieves “Cyber Superpower” Status

Google Cloud: CISOs Demand Simplified Security Tools Amid Growing Tech Complexity

Over 40% of UK Businesses Faced Cybersecurity Breaches in 2024

SpyNote Malware Targets Android Users with Fake Google Play Pages

AI-Powered AkiraBot Evades CAPTCHA to Spam 80,000 Websites

Operation Endgame Continues with Smokeloader Customer Arrests

Squid Caching Proxy Security Audit: 55 Vulnerabilities, 35 0days.

jupyterlab-4.4.0-1.fc43 python-notebook-7.4.0-1.fc43

Windows CLFS Driver Elevation of Privilege

USN-7432-1: libsoup vulnerabilities

chromium-135.0.7049.84-1.fc40

chromium-135.0.7049.84-1.el10_1

chromium-135.0.7049.84-1.el9