ALSA-2026:8119

[ALSA-2026:8119] Important: squid security update

Type:

security

Severity:

important

Release date:

2026-04-15

Description:

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects.  

Security Fix(es):  

  * squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling (CVE-2026-33526)
  * Squid: Squid: Denial of Service via crafted ICP traffic (CVE-2026-32748)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	squid-6.10-6.el10_1.3.aarch64.rpm	e6db2443bc8fa4a77a5c9f52c20bd61fd9e9ffe65a4ad3540ba11cb9dfed247b
ppc64le	squid-6.10-6.el10_1.3.ppc64le.rpm	789e4358379ce76c870514bc6d291f35f2f49a19f4a0c80744c056f07391180d
s390x	squid-6.10-6.el10_1.3.s390x.rpm	d9e946e9cfb4d45f4c287535d985b9da0b7616f7d66248df735b2689c51557a1
x86_64	squid-6.10-6.el10_1.3.x86_64.rpm	7601a0d826698952d189fb06977aa0d33ef306330846a31d3106be89b2507875
x86_64_v2	squid-6.10-6.el10_1.3.x86_64_v2.rpm	592185c5b53b3c301d2d62d3e8c46e9ad0dee9e1272b0a47e0ac2606e27e9f6f

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.