Squidbleed & DirtyClone: The Linux Exploits Everyone's Missing
A 29-year-old bug in the Squid proxy is leaking your users' cleartext HTTP requests and session tokens — and a brand new Linux kernel flaw called DirtyClone lets a local attacker overwrite privileged binaries in memory without touching a single file on disk. This week we break down both vulnerabilities, plus critical patches for OpenVPN and Xorg-Server. CHAPTERS: 00:00 Squidbleed (CVE-2026-47729): 29-Year-Old Proxy Leak 00:56 How the Squid FTP Parser Leaks Memory 02:02 DirtyClone (CVE-2026-43503): Kernel LPE via Cloned Packets 03:05 How DirtyClone Overwrites Root Binaries in Memory 04:16 DirtyClone Mitigation & Unprivileged Namespace Restriction 05:01 OpenVPN CVE-2026-40215 & Xorg-Server Privilege Escalation LINKS: Squidbleed Advisory: https://thehackernews.com/2026/06/29-... Squidbleed PoC: https://github.com/califio/publicatio... Squid Fix Commit: https://github.com/squid-cache/squid/... DirtyClone NVD: https://nvd.nist.gov/vuln/detail/CVE-... OpenVPN Debian Advisory: https://www.freexian.com/lts/extended... Xorg-Server Debian Advisory: https://www.debian.org/security/2026/... HASHTAGS: #Linux #LinuxSecurity #CVE #Squidbleed #DirtyClone #OpenVPN #Xorg #CyberSecurity #LinuxKernel #PatchNow ======================================================= "Please like, comment, and subscribe to receive more videos of this kind." https://goo.gl/a9JwXB Subscribe to the weekly newsletter: https://tondoeslinux.com/subscribe Use VidIQ for your channel: https://vidiq.com/TonDoesLinux Use the best VPN: https://surfshark.club/friend/FN3Sduq4 Learn Linux: • Learn Linux Desktop Learn Arch: • Learn Arch Linux 2019 Website: www.tondoeslinux.com Like my Facebook page: / tondoeslinux See me on Twitter / tondoes #tondoeslinux #linuxtutorial #linux #apple #tech #shorts

CVE-2026-23111: One Typo Gives Full Root Access on Linux

Using NMAP Like a Red Team Operator (OPSEC Matters!)

Proton 11 Released: 18 New Games, EA Desktop Fixed & Wine 11 Explained

The Most Dangerous Linux Vulnerability Nobody Saw Coming

"Copy Fail" (CVE-2026-31431): The Critical Linux Kernel Vulnerability Explained

Home made GPU escalated quickly

I Wrote a JSON Serializer in Pure Bash

DirtyClone CVE-2026-43503: The Linux Root Exploit Affecting Every Distro

I Found Hidden Wires… Then the CTO Emailed Me.

Android 17 sucks. So I put Linux on a phone.

Linux Users Have Days Left to Fix This Secure Boot Problem

Bad Epoll 0-Day: Linux Kernel Root Exploit & RMM Attacks

How Hackers Actually Breach Systems - Secrets of Red Team Engineering

Why You NEED UUIDs in fstab (Linux Storage Explained)

Bazzite: Gaming Linux & Far More

We Uncovered The Master Plan That Peter Thiel Doesn't Want You To See

8 New Kali Linux Tools Released in 2026 That Nobody Is Talking

Linux Kernel 7.1 Released: New NTFS Driver, AMD Zen 6 & AI Policy

What is a DMZ, and why every company has one

