-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 14 Nov 2025 20:44:29 +0100 Source: squid Binary: squid-common Architecture: all Version: 5.7-2+deb12u5 Distribution: bookworm Urgency: medium Maintainer: all Build Daemon (x86-csail-02) Changed-By: Bastien Roucariès Description: squid-common - Full featured Web Proxy cache (HTTP proxy) - common files Closes: 1117048 Changes: squid (5.7-2+deb12u5) bookworm; urgency=medium . * Non maintainer upload by LTS team * Fix CVE-2023-46728: Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. * Fix CVE-2025-59362 (Closes: #1117048) Squid mishandles ASN.1 encoding of long SNMP OIDs. * Remove Gopher support * Fix CVE-2024-45802: Disable ESI feature support. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This problem is fixed by changing the build configuration to specify the --disable-esi option. Checksums-Sha1: ac76f4b4d0689b97520e51b1ccabd03d2cc9e191 314976 squid-common_5.7-2+deb12u5_all.deb 02ddec35bc38a976ae08a3e54e25819a2f6bc3d4 7918 squid_5.7-2+deb12u5_all-buildd.buildinfo Checksums-Sha256: 04cc45e414e4b1b5591d0135b62528b194268b0b4570e528b3be1fb2e229d5f8 314976 squid-common_5.7-2+deb12u5_all.deb a7bc312d7a65673c1fdb901f168f245bd466f9f6a3f032bf36912b34fcdadc28 7918 squid_5.7-2+deb12u5_all-buildd.buildinfo Files: 256194fb46e0f538d93d3ea8041b2cb2 314976 web optional squid-common_5.7-2+deb12u5_all.deb 0575b63ecf84fc58c4ed3dab31355a1c 7918 web optional squid_5.7-2+deb12u5_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEELusn8jY95Sf7obGlx30Wh8LXl/YFAmk1vZQACgkQx30Wh8LX l/ZtWhAA2CCzeRcQviSi4UKQ3M/GjO0FpXucbo9VclcN1Vb+IgH35c6lSoSyESe+ CT+YxfHCXbxr7C/z9BmhZxK/PIJoTq2pgpI03d1OOEGfKSA4OloOayqNbM3EfE1U d9KYiGzA0YEKlzjnezWDSNQy05I1qm/cZCWSqn8SecV5OJkovdPTBVphD8rik6/R 832nDOXSu8zED8rpeyQjUHp0bMBnY+4ReCFZ5JhZnW92iKXbIxrVL1P+E0QU9jrt NsbjkACm8FK8yZpH+mlzLgIsXnexhIs2KF9YBFhYDb1SkSGSgYg+wCqa9KEOi4gp 04LlON9jMZGM0E4mNxDMg0rL6IONEkZLuhIES6fYURyANc2tfvSAdwEZjV17GEBZ JSXEbB9HJCEo5Ug3c/zvEJaWp4yRQSx615lTXViEs5Yz/pxRzqIm1jQfg+u9KnpQ fC76Jqgr2XfY1E1gzbeEoO2T78MESwIpYMaAIL2KXTwce3esIdxwuROQb6SVJoSK B5oMZIhr5nnWhf7+ygZ6UaHuEjsVqJOzeJfuSk3jpzxddXptrYD90kNEAcVMVlrP eXjvsrIyR7nJNRY4jjztCpjMimcAiCS/wnGW/FvPimO5mw5AzmMUdIU+C5sX1ItI yszKImKA3Di+uLLr3FKRQ38jUEU4OWMv3hX7apZwy2JHG/ytbMU= =Bg+O -----END PGP SIGNATURE-----