CNNVD-202509-4080 Information

CNNVD ID

CNNVD-202509-4080

Related CVE

CVE-2025-59362

• CNNVD Published: 2025-09-26

Description (Chinese)

Squid是Squid开源的一套代理服务器和Web缓存服务器软件。该软件提供缓存万维网、过滤流量、代理上网等功能。 Squid 7.1及之前版本存在安全漏洞，该漏洞源于asn1.c文件中asn_build_objid函数对长SNMP OID的ASN.1编码处理不当。

Description (English)

Squid is a proxy server for Squid and Web Cache Server software. The software provides access to the World Wide Web, filtering traffic, proxy access, etc. Squid 7.1 and previous versions had a security loophole, which stemmed from the inappropriate handling of the ASN.1 coding of long SNM OID by the asn build objid function in document asn1.c.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Squid

Published

2025-09-26

Last Modified

2026-02-24

References

https://github.com/Microsvuln/advisories/blob/main/CVE-2025-59362/CVE-2025-59362.md https://github.com/squid-cache/squid/pull/2149

Patch

https://www.squid-cache.org/Versions/