CVE-2025-59362 — Stack-based Buffer Overflow in Squid

CWE-121 — Stack-based Buffer Overflow CWE-172 — Encoding Error9 documents8 sources

Severity

4.0MEDIUMNVD

EPSS

0.2%

top 59.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Squid Squid-cache Squid

Timeline

PublishedSep 26

Latest updateNov 4

Description

Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 2.5 | Impact: 1.4

Affected Packages2 packages

▶Debiansquid/squid< 4.13-10+deb11u6+3

▶NVDsquid-cache/squid7.1

Patches

Patch: github.com ↗

🔴Vulnerability Details

CVEList

CVE-2025-59362: Squid through 7↗2025-09-26

▶

OSV

CVE-2025-59362: Squid through 7↗2025-09-26

▶

GHSA

GHSA-jh85-mgr3-8f33: Squid through 7↗2025-09-26

▶

📋Vendor Advisories

Ubuntu

Squid vulnerability↗2025-11-04

▶

Ubuntu

Squid vulnerability↗2025-10-06

▶

Red Hat

squid-cache: Squid cache buffer overflow↗2025-09-26

▶

Microsoft

Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.↗2025-09-09

▶

Debian

CVE-2025-59362: squid - Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in as...↗2025

▶