Squid Advisories
- SQUID-2007:2, Dec 4, 2007
- Denial of service in cache updates
- SQUID-2007:1, Mar 20, 2007
- Denial of service in TRACE method processing
- SQUID-2005:5, Apr 23, 2005
- HTTP Response Splitting cache poisoning vulnerability
- SQUID-2005:4, Apr 23, 2005
- HTTP Request Smuggling cache poisoning vulnerability
- SQUID-2005:3, Jan 28, 2005
- Buffer overflow in WCCP recvfrom() call.
- SQUID-2005:2, Jan 15, 2005
- Denial of service by forged WCCP messages.
- SQUID-2005:1, Jan 15, 2005
- Buffer overflow in Gopher reply parser.
- SQUID-2004:3, Oct 25, 2004
- SEGV bug caused by malformed SNMP messages. Squid-2.5.STABLE7 addresses this bug.
- SQUID-2004:2, June 7, 2004
- Buffer overflow bug in 'ntlm_auth' authentication helper. Squid-2.5.STABLE6 addresses this bug.
- SQUID-2004:1, February 29, 2004
- Fixes and features for URL encoding tricks. Squid-2.5.STABLE5 addresses these issues.
- SQUID-2002:3, July 3, 2002
- Security advisory several issues in Squid-2.4.STABLE6 and earlier. Squid-2.4.STABLE7 released to address these issues.
- SQUID-2002:2, March 26, 2002
- Security advisory regarding the internal DNS code in Squid-2.3, Squid-2.4, Squid-2.5 and Squid-HEAD versions.
- SQUID-2002:1, February 21, 2002
- Security advisory regarding three issues in most Squid-2.x versions up to and including Squid-2.4.STABLE3.
Search
Introduction
Documentation
- FAQ | Wiki | Book
- Configuration Guide - 2.6
- Configuration Guide - 3.0
- Configuration Guide - Visolve
- Configuration Examples
- Users guide
- Non-English
- Security Advisories
- More...
Support
- Bugzilla Database
- Mailing lists
- Contacting us
- Commercial services
- Project Sponsors
- Squid-based products