PT-2025-37758 · Squid+6 · Squid+7

Microsvuln

Published

2025-09-15

Updated

2026-04-12

CVE-2025-59362

CVSS v3.1

4.0

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Squid versions through 7.1

Description Squid web proxy cache mishandles ASN.1 encoding of long SNMP OIDs. This issue is located in the asn build objid function within lib/snmplib/asn1.c. The issue results in a stack-based buffer overflow during SNMP message processing.

Recommendations Update to a version later than 7.1.

Exploit

Fix

DoS

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-172CWE-121

Related Identifiers

ALSA-2025_19107

ALSA-2025_20935

ALT-PU-2025-14197

AZL-67808

AZL-67850

BDU:2025-14411

CVE-2025-59362

DLA-4369-1

MGASA-2026-0094

OESA-2025-2335

OPENSUSE-SU-2026:20027-1

SUSE-SU-2025:03521-1

SUSE-SU-2025:03606-1

SUSE-SU-2025:03607-1

SUSE-SU-2025:03627-1

SUSE-SU-2025_03606-1

SUSE-SU-2025_03607-1

SUSE-SU-2025_03627-1

SUSE-SU-2026:20078-1

USN-7804-1

USN-7804-2

Affected Products

Alt Linux

Debian

Linuxmint

Red Os

Squid

Squid Cache

Suse

Ubuntu

PT-2025-37758 · Squid+6 · Squid+7

CVE-2025-59362

Weakness Enumeration

Related Identifiers

Affected Products

References · 59