An update for squid is now available for HCE 1.1

HCE1-SA-2024-0037 An update for squid is now available for HCE 1.1 Critical HCE 1.1 Security Fix(es): A flaw was found in Squid. An incorrect integer overflow protection in the Squid SSPI and SMB authentication helpers is vulnerable to a buffer overflow attack, resulting in information disclosure or a denial of service. (CVE-2022-41318) Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication. (CVE-2023-46847) HCE 1.1 squid-3.5.20-17.hce1c.9.x86_64.rpm squid-migration-script-3.5.20-17.hce1c.9.x86_64.rpm