Red Hat Product Errata RHSA-2026:20580 - Security Advisory Issued: 2026-05-26 Updated: 2026-05-26 RHSA-2026:20580 - Security Advisory Overview Updated Packages Synopsis Important: squid:4 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fix(es): squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling (CVE-2026-33526) Squid: Squid: Denial of Service via crafted ICP traffic (CVE-2026-32748) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64 Red Hat Enterprise Linux Server - TUS 8.8 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64 Fixes BZ - 2451574 - CVE-2026-33526 squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling BZ - 2451577 - CVE-2026-32748 Squid: Squid: Denial of Service via crafted ICP traffic CVEs CVE-2026-32748 CVE-2026-33526 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 SRPM libecap-1.0.1-2.module+el8.1.0+4044+36416a77.src.rpm SHA-256: 2f43b6316609e9a09ecea6e01089d7d886d0024c1eae28f1c31d87670992f7ff squid-4.15-6.module+el8.8.0+24284+6402ee68.10.src.rpm SHA-256: 50d2f74ac4772c0923fa55a173c930feee423db9167c5846b2fffe419e58f253 x86_64 libecap-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: d9d61e2135b220b3d61ae42ef3168afe872f28e6ba90ec1e7c12f99ee0cd09bf libecap-debuginfo-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: fcf34d948d19d8ceec11c33bfbd410918882c1e2d5f98d317d47f40935a8beca libecap-debugsource-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: 3a323f9bd1ce4c4fdba3eed2f8c5ab67ef86553708394d3ef6c55c579d339c60 libecap-devel-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: 1b13a8613f81f5551073df17797db405c70acc0e332bbc915d50459e2e7f4530 squid-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: 6d53f4a3abb3602d5f91733adcdd6e4eecdc2866c9e7adba30af830311e53897 squid-debuginfo-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: c807cb0234ccc87aa1b2ed59ec59744309ebf235e9eaf385d3b4ec2868b06a5a squid-debugsource-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: 5a80b419e9b1b8ec5fb2182353e29b7b840143b406ba5c18c81aa174a123688e Red Hat Enterprise Linux Server - TUS 8.8 SRPM libecap-1.0.1-2.module+el8.1.0+4044+36416a77.src.rpm SHA-256: 2f43b6316609e9a09ecea6e01089d7d886d0024c1eae28f1c31d87670992f7ff squid-4.15-6.module+el8.8.0+24284+6402ee68.10.src.rpm SHA-256: 50d2f74ac4772c0923fa55a173c930feee423db9167c5846b2fffe419e58f253 x86_64 libecap-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: d9d61e2135b220b3d61ae42ef3168afe872f28e6ba90ec1e7c12f99ee0cd09bf libecap-debuginfo-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: fcf34d948d19d8ceec11c33bfbd410918882c1e2d5f98d317d47f40935a8beca libecap-debugsource-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: 3a323f9bd1ce4c4fdba3eed2f8c5ab67ef86553708394d3ef6c55c579d339c60 libecap-devel-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: 1b13a8613f81f5551073df17797db405c70acc0e332bbc915d50459e2e7f4530 squid-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: 6d53f4a3abb3602d5f91733adcdd6e4eecdc2866c9e7adba30af830311e53897 squid-debuginfo-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: c807cb0234ccc87aa1b2ed59ec59744309ebf235e9eaf385d3b4ec2868b06a5a squid-debugsource-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: 5a80b419e9b1b8ec5fb2182353e29b7b840143b406ba5c18c81aa174a123688e Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 SRPM libecap-1.0.1-2.module+el8.1.0+4044+36416a77.src.rpm SHA-256: 2f43b6316609e9a09ecea6e01089d7d886d0024c1eae28f1c31d87670992f7ff squid-4.15-6.module+el8.8.0+24284+6402ee68.10.src.rpm SHA-256: 50d2f74ac4772c0923fa55a173c930feee423db9167c5846b2fffe419e58f253 ppc64le libecap-1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le.rpm SHA-256: 1ba6e6a7a7f64c91b5f49112a2d3437e5a4156c04cb2664d9f06985ffd631fac libecap-debuginfo-1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le.rpm SHA-256: 2ef0dadb839911f6fb556005df57f2531f2dd215e8bd7dceb39370910050c6a4 libecap-debugsource-1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le.rpm SHA-256: 1cd7655a19f36b9eaf1cc95fd3e85d2f3cfa1a76e9206ca639fb16f14634f3dd libecap-devel-1.0.1-2.module+el8.1.0+4044+36416a77.ppc64le.rpm SHA-256: 2d8756169558e12e281f18a9da93cc49c525ef908c8f2533f81e3a98b22d1e68 squid-4.15-6.module+el8.8.0+24284+6402ee68.10.ppc64le.rpm SHA-256: 8c8a9f149f2293e795144efd83181d74a3fa6567ba713ec1aa987f80085659c7 squid-debuginfo-4.15-6.module+el8.8.0+24284+6402ee68.10.ppc64le.rpm SHA-256: d3e877b5a668b96b2ec3fabbb1b456a25f4c8225bcc5a0a2a75b6a339551f3eb squid-debugsource-4.15-6.module+el8.8.0+24284+6402ee68.10.ppc64le.rpm SHA-256: 1a8a24475c4fc09225ee9562fc45c4ec73f53e65ed881d9c66c87aa7969baefe Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 SRPM libecap-1.0.1-2.module+el8.1.0+4044+36416a77.src.rpm SHA-256: 2f43b6316609e9a09ecea6e01089d7d886d0024c1eae28f1c31d87670992f7ff squid-4.15-6.module+el8.8.0+24284+6402ee68.10.src.rpm SHA-256: 50d2f74ac4772c0923fa55a173c930feee423db9167c5846b2fffe419e58f253 x86_64 libecap-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: d9d61e2135b220b3d61ae42ef3168afe872f28e6ba90ec1e7c12f99ee0cd09bf libecap-debuginfo-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: fcf34d948d19d8ceec11c33bfbd410918882c1e2d5f98d317d47f40935a8beca libecap-debugsource-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: 3a323f9bd1ce4c4fdba3eed2f8c5ab67ef86553708394d3ef6c55c579d339c60 libecap-devel-1.0.1-2.module+el8.1.0+4044+36416a77.x86_64.rpm SHA-256: 1b13a8613f81f5551073df17797db405c70acc0e332bbc915d50459e2e7f4530 squid-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: 6d53f4a3abb3602d5f91733adcdd6e4eecdc2866c9e7adba30af830311e53897 squid-debuginfo-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: c807cb0234ccc87aa1b2ed59ec59744309ebf235e9eaf385d3b4ec2868b06a5a squid-debugsource-4.15-6.module+el8.8.0+24284+6402ee68.10.x86_64.rpm SHA-256: 5a80b419e9b1b8ec5fb2182353e29b7b840143b406ba5c18c81aa174a123688e The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .