[ol8_appstream] squid-7:4.15-10.module+el8.10.0+90877+04e4d7e0.11.x86_64

Name:	squid
Epoch:	7
Version:	4.15
Release:	10.module+el8.10.0+90877+04e4d7e0.11
Architecture:	x86_64
Module:	squid:4:8100020260408092701:10
Group:	Unspecified
Size:	11662049
License:	GPLv2+ and (LGPLv2+ and MIT and BSD and Public Domain)
RPM:	squid-4.15-10.module+el8.10.0+90877+04e4d7e0.11.x86_64.rpm
Source RPM:	squid-4.15-10.module+el8.10.0+90877+04e4d7e0.11.src.rpm
Build Date:	Thu Apr 16 2026
Build Host:	build-ol8-x86_64.oracle.com
Vendor:	Oracle America
URL:	http://www.squid-cache.org
Summary:	The Squid proxy caching server
Description:	Squid is a high-performance proxy caching server for Web clients, supporting FTP and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools.

Changelog (Show File list) (Show related packages)

Wed Apr 08 2026 Tomas Korbar <tkorbar@redhat.com> - 7:4.15-10.11
```
- Fix patch for CVE-2026-32748
- Resolves: RHEL-160675
```

Tue Apr 07 2026 Tomas Korbar <tkorbar@redhat.com> - 7:4.15-10.10

- Resolves: RHEL-160675 - squid:4/squid: Squid: Denial of Service
  via crafted ICP traffic (CVE-2026-32748)
- Resolves: RHEL-160674 - squid:4/squid: Squid: Denial of Service
  via heap Use-After-Free vulnerability in ICP handling (CVE-2026-33526)

Mon Oct 20 2025 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10.9

- Resolves: RHEL-122484 - squid: Squid vulnerable to information disclosure via
  authentication credential leakage in error handling (CVE-2025-62168)

Wed Mar 26 2025 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10.6

- Resolves: RHEL-84420 - A squid child process causes a memory reference error
  and the squid service terminates abnormally

Fri Nov 22 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10.5

- Resolves: RHEL-66120 - squid caches DNS entries despite having TTL set to 0

Mon Nov 18 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10.4
```
- Resolves: RHEL-67870 - Remove gopher mention from spec file
```

Wed Nov 13 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10.3

- Resolves: RHEL-22593 - CVE-2024-23638 squid:4/squid: vulnerable to
  a Denial of Service attack against Cache Manager error responses

Thu Nov 07 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10.2

- Disable ESI support
- Resolves: RHEL-65075 - CVE-2024-45802 squid:4/squid: Denial of Service
  processing ESI response content

Mon Oct 14 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10.1

- Resolves: RHEL-56024 - (Regression) Transfer-encoding:chunked data is not sent
  to the client in its complementary

Tue Mar 19 2024 Luboš Uhliarik <luhliari@redhat.com> - 7:4.15-10

- Resolves: RHEL-28529 - squid:4/squid: Denial of Service in HTTP Chunked
  Decoding (CVE-2024-25111)
- Resolves: RHEL-26088 - squid:4/squid: denial of service in HTTP header
  parser (CVE-2024-25617)