{"uuid": "60d88c5c-026f-4586-9e06-3cf1fde2b625", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47729", "type": "seen", "source": "https://gist.github.com/muhamedfazalps/df83f4ac0958456ee903e56fa62cf93e", "content": "# \u26a0\ufe0f SECURITY ALERT: CVE-2026-47729 \u2014 Squidbleed (Heartbleed-style Memory Leak)\n\n## TL;DR\nIf your project uses Squid Proxy, update to the latest version immediately.\nEvery Squid version is affected by this Heartbleed-style memory leak that\ncan extract session tokens and passwords from memory.\n\n## What is Squidbleed?\n- **CVE ID:** CVE-2026-47729\n- **Type:** Heartbleed-style memory leak in Squid Proxy\n- **Impact:** Session tokens, passwords, and sensitive data can be extracted from memory\n- **Affected:** Every Squid version\n- **Disclosed:** June 19, 2026\n\n## How to Check If You're Affected\n1. Check your Squid version: `squid -v`\n2. If you're running ANY version of Squid, you're affected\n3. Check Docker images: `docker exec  squid -v`\n\n## What to Do\n1. **Update Squid** to the latest version immediately\n2. **Rotate credentials** that may have been exposed through the leak\n3. **Review logs** for suspicious access patterns\n4. **Consider alternatives** if Squid update is not immediately available\n\n## Affected Docker Images\n- `yegor256/squid-proxy` (96\u2605)\n- `zeebote/webmin-on-container` (8\u2605)\n- `babim/docker-squid` (6\u2605)\n- `chrootlogin/docker-squid` (6\u2605)\n- `ymmt2005/squid-container` (6\u2605)\n- `alexellis/squid-docker` (4\u2605)\n- Any Docker image running Squid Proxy\n\n## References\n- Issue: https://github.com/uyuni-project/uyuni/issues/12148\n- CVE: CVE-2026-47729\n\n---\n*If this alert helped you: https://buymeacoffee.com/muhamedfazalps*\n", "creation_timestamp": "2026-06-23T13:29:05.000000Z"}