-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 14 Nov 2025 20:44:29 +0100
Source: squid
Binary: squid squid-cgi squid-cgi-dbgsym squid-dbgsym squid-openssl squid-openssl-dbgsym squid-purge squid-purge-dbgsym squidclient squidclient-dbgsym
Architecture: arm64
Version: 5.7-2+deb12u5
Distribution: bookworm
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-03) <buildd_arm64-arm-conova-03@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 squid      - Full featured Web Proxy cache (HTTP proxy GnuTLS flavour)
 squid-cgi  - Full featured Web Proxy cache (HTTP proxy) - control CGI
 squid-openssl - Full featured Web Proxy cache (HTTP proxy OpenSSL flavour)
 squid-purge - Full featured Web Proxy cache (HTTP proxy) - cache management uti
 squidclient - Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message util
Closes: 1117048
Changes:
 squid (5.7-2+deb12u5) bookworm; urgency=medium
 .
   * Non maintainer upload by LTS team
   * Fix CVE-2023-46728:
     Due to a NULL pointer dereference bug Squid is vulnerable
     to a Denial of Service attack against Squid's Gopher gateway.
   * Fix CVE-2025-59362 (Closes: #1117048)
     Squid mishandles ASN.1 encoding of long SNMP OIDs.
   * Remove Gopher support
   * Fix CVE-2024-45802: Disable ESI feature support.
     Due to Input Validation, Premature Release of Resource During Expected
     Lifetime, and Missing Release of Resource after Effective Lifetime bugs,
     Squid is vulnerable to Denial of Service attacks by a trusted server
     against all clients using the proxy. This problem is fixed by changing
     the build configuration to specify the --disable-esi option.
Checksums-Sha1:
 50c388c709620adc4a35c65bbdad7498942fecff 164664 squid-cgi-dbgsym_5.7-2+deb12u5_arm64.deb
 c2be24664c4a42497f7f2d7492019ae02f8aa772 160768 squid-cgi_5.7-2+deb12u5_arm64.deb
 ff0373e3542700aeb3dfb211183fbb42f3e06eed 21815340 squid-dbgsym_5.7-2+deb12u5_arm64.deb
 ed2540baa536acbda373e479139bb5757737eeee 24083960 squid-openssl-dbgsym_5.7-2+deb12u5_arm64.deb
 014fe833ee9619902b4221966c30bf4a68d77a8f 2526208 squid-openssl_5.7-2+deb12u5_arm64.deb
 7e64a56594c697ef99142079d4b2b5df8eab204b 87888 squid-purge-dbgsym_5.7-2+deb12u5_arm64.deb
 ca6a098b380fe9ba98e86155ed8f0373b048f7de 151680 squid-purge_5.7-2+deb12u5_arm64.deb
 8574760856b8ac6e068e1a3f625df4a03affc19e 10575 squid_5.7-2+deb12u5_arm64-buildd.buildinfo
 f1c70567e36180b9db23924c8aa6bb363cbaf315 2385820 squid_5.7-2+deb12u5_arm64.deb
 264b56a36e6c5903c20a45a00fae7f534199b7cb 199176 squidclient-dbgsym_5.7-2+deb12u5_arm64.deb
 d2653fcda1e878ba68e395d4aad47994328e6cd5 162288 squidclient_5.7-2+deb12u5_arm64.deb
Checksums-Sha256:
 d9a7b50a61e7f442c44e07165faf4e613dcb42ffeaaa430ed083cd97c5e97d66 164664 squid-cgi-dbgsym_5.7-2+deb12u5_arm64.deb
 af4f4fec253ab8456187a3a443dcd63184607d6e9db2c172709c2898a3a14e30 160768 squid-cgi_5.7-2+deb12u5_arm64.deb
 a79b1f669ee8cefccbfc69261c889a0fd05f187e41ac74e2aec0c6393cf27d61 21815340 squid-dbgsym_5.7-2+deb12u5_arm64.deb
 88aba2365cd76c04656da6b20babc4daddc695278963c1997d8ae00d213b43c9 24083960 squid-openssl-dbgsym_5.7-2+deb12u5_arm64.deb
 af4947597b8ddc1023fb57291f33e22168285ba2e5259e15509807c9423996c8 2526208 squid-openssl_5.7-2+deb12u5_arm64.deb
 88b86ef421dd5badd186b84210dd7f1c7b32f904843bf32c8112763d415f4dcb 87888 squid-purge-dbgsym_5.7-2+deb12u5_arm64.deb
 4c4f625d7fcf35d17a33db4c2b6b20a06984f6574966849ffb3646c1e6cf113e 151680 squid-purge_5.7-2+deb12u5_arm64.deb
 6f0281126aecdf8f1c4ffe4fe1a1e5a2bb7ffea7cff9ae87ba60fdeb2e091909 10575 squid_5.7-2+deb12u5_arm64-buildd.buildinfo
 8f56b665c53b08325570f53b82119e8c6ea5bb984cc66fae6b862265001ac0fe 2385820 squid_5.7-2+deb12u5_arm64.deb
 2e4cd03fa1fd4ab63a269b20727def82de5cee6cea4bb77611d19f50741192a4 199176 squidclient-dbgsym_5.7-2+deb12u5_arm64.deb
 b08ca8a11800eb14d46fa8904b3173e95b6dc633ab864ca36be509d11321d701 162288 squidclient_5.7-2+deb12u5_arm64.deb
Files:
 9739d8c43633577cca5fe172f2b00317 164664 debug optional squid-cgi-dbgsym_5.7-2+deb12u5_arm64.deb
 7c4e965b903dab54b18cbbf19ecc3ef7 160768 web optional squid-cgi_5.7-2+deb12u5_arm64.deb
 5ee5191f75a6f35854aefe7d41c494d9 21815340 debug optional squid-dbgsym_5.7-2+deb12u5_arm64.deb
 e2474677098816a7b576dbd046dd13bb 24083960 debug optional squid-openssl-dbgsym_5.7-2+deb12u5_arm64.deb
 7ec346da0e7d54aca15c676f69217653 2526208 web optional squid-openssl_5.7-2+deb12u5_arm64.deb
 0ba1ecf5ab4affa738e13e4a530d99f8 87888 debug optional squid-purge-dbgsym_5.7-2+deb12u5_arm64.deb
 a32f0eb62cdd2238036e0623f201456f 151680 web optional squid-purge_5.7-2+deb12u5_arm64.deb
 78e180e260bf9d0f672207a2a2908057 10575 web optional squid_5.7-2+deb12u5_arm64-buildd.buildinfo
 71068814a960b8735fe9cdb55295a1dd 2385820 web optional squid_5.7-2+deb12u5_arm64.deb
 c6ce9c52bee0d93485b9f5495301a884 199176 debug optional squidclient-dbgsym_5.7-2+deb12u5_arm64.deb
 105b7114791335b530b7da7aad93b5c8 162288 web optional squidclient_5.7-2+deb12u5_arm64.deb

-----BEGIN PGP SIGNATURE-----
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=8SU9
-----END PGP SIGNATURE-----