[El-errata] ELSA-2026-8880 Important: Oracle Linux 7 squid security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu May 21 05:38:32 UTC 2026
Oracle Linux Security Advisory ELSA-2026-8880
http://linux.oracle.com/errata/ELSA-2026-8880.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
squid-3.5.20-17.0.11.el7_9.13.x86_64.rpm
squid-migration-script-3.5.20-17.0.11.el7_9.13.x86_64.rpm
squid-sysvinit-3.5.20-17.0.11.el7_9.13.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/squid-3.5.20-17.0.11.el7_9.13.src.rpm
Related CVEs:
CVE-2026-32748
CVE-2026-33526
Description of changes:
[7:3.5.20-17.0.11.13]
- Security update for CVE-2026-32748 CVE-2026-33526 [Orabug: 39230173]
[7:3.5.20-17.0.9.13]
- Fixes CVE-2025-62168, squid: Squid vulnerable to information disclosure via
- authentication credential leakage in error handling [Orabug: 38587551]
[7:3.5.20-17.0.7.13]
- Fixes CVE-2025-54574, add URN access disabling config options [Orabug: 38350105]
[7:3.5.20-17.0.5.13]
- Fixed cve 2023-46846 for http and icap request/response smuggling [Orabug: 37326730]
More information about the El-errata
mailing list