ELSA-2026-8317

ELSA-2026-8317 - squid:4 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-04-16

Description

libecap
[1.0.1-2]
- Resolves: #1695587 - Ensure modular RPM upgrade path

[1.0.1-1]
- new version 1.0.1
- autoconf.h moved from lookaside to dist-git

[1.0.0-7]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild

[1.0.0-6]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild

[1.0.0-5]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild

[1.0.0-4]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild

[1.0.0-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild

[1.0.0-2]
- Rebuilt for GCC 5 C++11 ABI change

[1.0.0-1]
- new version 1.0.0

[0.2.0-10]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild

squid
[7:4.15-10.11]
- Fix patch for CVE-2026-32748
- Resolves: RHEL-160675

[7:4.15-10.10]
- Resolves: RHEL-160675 - squid:4/squid: Squid: Denial of Service
via crafted ICP traffic (CVE-2026-32748)
- Resolves: RHEL-160674 - squid:4/squid: Squid: Denial of Service
via heap Use-After-Free vulnerability in ICP handling (CVE-2026-33526)

[7:4.15-10.9]
- Resolves: RHEL-122484 - squid: Squid vulnerable to information disclosure via
authentication credential leakage in error handling (CVE-2025-62168)

[7:4.15-10.6]
- Resolves: RHEL-84420 - A squid child process causes a memory reference error
and the squid service terminates abnormally

[7:4.15-10.5]
- Resolves: RHEL-66120 - squid caches DNS entries despite having TTL set to 0

[7:4.15-10.4]
- Resolves: RHEL-67870 - Remove gopher mention from spec file

[7:4.15-10.3]
- Resolves: RHEL-22593 - CVE-2024-23638 squid:4/squid: vulnerable to
a Denial of Service attack against Cache Manager error responses

[7:4.15-10.2]
- Disable ESI support
- Resolves: RHEL-65075 - CVE-2024-45802 squid:4/squid: Denial of Service
processing ESI response content

[7:4.15-10.1]
- Resolves: RHEL-56024 - (Regression) Transfer-encoding:chunked data is not sent
to the client in its complementary

[7:4.15-10]
- Resolves: RHEL-28529 - squid:4/squid: Denial of Service in HTTP Chunked
Decoding (CVE-2024-25111)
- Resolves: RHEL-26088 - squid:4/squid: denial of service in HTTP header
parser (CVE-2024-25617)

Related CVEs

CVE-2026-32748

CVE-2026-33526

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	libecap-1.0.1-2.module+el8.9.0+90083+f7556140.src.rpm	bec878a867b1f4f4f809e660ec3852c4e9dc9ed281d3bb8f19c0846a53763de6	-	ol8_aarch64_appstream
	squid-4.15-10.module+el8.10.0+90877+04e4d7e0.11.src.rpm	739caad1ab668c0dac31292eb03e5a0e06a82ae2d12805e137b032c26a31d0f1	-	ol8_aarch64_appstream
	libecap-1.0.1-2.module+el8.9.0+90083+f7556140.aarch64.rpm	44b7d303b0706f02bf8f6c764ccdbfdb723bda7fe9458c8b4f45e8cc5f9e53a9	-	ol8_aarch64_appstream
	libecap-devel-1.0.1-2.module+el8.9.0+90083+f7556140.aarch64.rpm	9c28b594b51fa9966956f5def632f33067dafb86207c324f2c7dfc8b0dcf466e	-	ol8_aarch64_appstream
	squid-4.15-10.module+el8.10.0+90877+04e4d7e0.11.aarch64.rpm	f4f6d3f9fb9520c7d5705006876e3e4b6b8ca51374c2cbcd2a59390ebf6e0c44	-	ol8_aarch64_appstream
Oracle Linux 8 (x86_64)	libecap-1.0.1-2.module+el8.9.0+90083+f7556140.src.rpm	bec878a867b1f4f4f809e660ec3852c4e9dc9ed281d3bb8f19c0846a53763de6	-	ol8_x86_64_appstream
	squid-4.15-10.module+el8.10.0+90877+04e4d7e0.11.src.rpm	739caad1ab668c0dac31292eb03e5a0e06a82ae2d12805e137b032c26a31d0f1	-	ol8_x86_64_appstream
	libecap-1.0.1-2.module+el8.9.0+90083+f7556140.x86_64.rpm	a19a8fe60034442365ebe4867be57efaf3dd84f45d1c064789c6a86b792bc997	-	ol8_x86_64_appstream
	libecap-devel-1.0.1-2.module+el8.9.0+90083+f7556140.x86_64.rpm	d826fa957ede16c5b3db470182a176678ec52971afdaf4fdd4c0e47eb78951c9	-	ol8_x86_64_appstream
	squid-4.15-10.module+el8.10.0+90877+04e4d7e0.11.x86_64.rpm	eee7c4364020c75074b8fe1e385ac3d572e18c8656883658252ffe4255d22f05	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team