🟠 High  |  Source: Schneier on Security


A 29-year-old vulnerability in Squid proxy software, dubbed ‘Squidbleed’, has been disclosed, allowing HTTP requests to be leaked. Squid is a widely used open-source caching proxy deployed across on-premises and cloud environments. Despite its age, this flaw is significant as Squid remains prevalent in many enterprise and cloud network architectures as a forward or reverse proxy.

Security Architect’s Take: Audit your environment immediately for any Squid proxy deployments — including those embedded in containerised workloads or cloud egress filtering stacks — and apply available patches or mitigations. Review network segmentation to ensure Squid instances are not exposed to untrusted networks pending remediation.

Original advisory: Friday Squid Blogging: “Squidbleed” Vulnerability