-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 14 Nov 2025 20:44:29 +0100 Source: squid Binary: squid squid-cgi squid-cgi-dbgsym squid-dbgsym squid-openssl squid-openssl-dbgsym squid-purge squid-purge-dbgsym squidclient squidclient-dbgsym Architecture: ppc64el Version: 5.7-2+deb12u5 Distribution: bookworm Urgency: medium Maintainer: ppc64el Build Daemon (ppc64el-osuosl-02) Changed-By: Bastien Roucariès Description: squid - Full featured Web Proxy cache (HTTP proxy GnuTLS flavour) squid-cgi - Full featured Web Proxy cache (HTTP proxy) - control CGI squid-openssl - Full featured Web Proxy cache (HTTP proxy OpenSSL flavour) squid-purge - Full featured Web Proxy cache (HTTP proxy) - cache management uti squidclient - Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message util Closes: 1117048 Changes: squid (5.7-2+deb12u5) bookworm; urgency=medium . * Non maintainer upload by LTS team * Fix CVE-2023-46728: Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. * Fix CVE-2025-59362 (Closes: #1117048) Squid mishandles ASN.1 encoding of long SNMP OIDs. * Remove Gopher support * Fix CVE-2024-45802: Disable ESI feature support. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This problem is fixed by changing the build configuration to specify the --disable-esi option. Checksums-Sha1: 389a54e02d1a132599359a30f8ea23280edbb1e3 169328 squid-cgi-dbgsym_5.7-2+deb12u5_ppc64el.deb f3780821ddd3b9de79d10dbc51b1bc7e1bbc98ad 165600 squid-cgi_5.7-2+deb12u5_ppc64el.deb 5b7c17564952ced7743999b580e469cde8fa8cea 22184524 squid-dbgsym_5.7-2+deb12u5_ppc64el.deb c1ac8c4e71cf89b4d44bfc9b2fbde5ddd7bb550a 24464388 squid-openssl-dbgsym_5.7-2+deb12u5_ppc64el.deb 7a8c5a4238d1b93797533b992a8745385d9933fa 2746492 squid-openssl_5.7-2+deb12u5_ppc64el.deb 887ae51c3dff5df25b8a87df379e71541c92d2b6 88932 squid-purge-dbgsym_5.7-2+deb12u5_ppc64el.deb 70f7f5b12333813180163cb9426d60051e6f7ffa 153772 squid-purge_5.7-2+deb12u5_ppc64el.deb 87de21f567083ea6ec458750897eb4f01fd620a5 10636 squid_5.7-2+deb12u5_ppc64el-buildd.buildinfo f21bb40b93c93e1bad3e61c83bc61a98f62e06fc 2592148 squid_5.7-2+deb12u5_ppc64el.deb 134304ffda397b55188f58e32213a2fe0580a156 201720 squidclient-dbgsym_5.7-2+deb12u5_ppc64el.deb 0206b242672575c883b3955803689661f6eadc7a 165916 squidclient_5.7-2+deb12u5_ppc64el.deb Checksums-Sha256: 8f4a4798d599f8eb1988dba30fab8af923ff2b952fc1be70b9c13ef79f40536f 169328 squid-cgi-dbgsym_5.7-2+deb12u5_ppc64el.deb bd56b50f9975ea73126ccb8e8718153bd210836a908ed84b455db9cc9e9cb3b3 165600 squid-cgi_5.7-2+deb12u5_ppc64el.deb 6c8010407ad887842a210d427f7a3c28a6eb92d0dda5fa714139e6fbff66b79c 22184524 squid-dbgsym_5.7-2+deb12u5_ppc64el.deb 65971104ee9d71f7a8ae0dbd6bd88831df3f19c611dda9a66e603cb8fbb7fe8a 24464388 squid-openssl-dbgsym_5.7-2+deb12u5_ppc64el.deb 39ec9428ea1df163c7a709c59e67423a30acb33bf0f204e580cce7d7af1f9379 2746492 squid-openssl_5.7-2+deb12u5_ppc64el.deb 933594bf7d9c9d9365ed1bb5719663458874249d40c8b838665ea75eef57b0f1 88932 squid-purge-dbgsym_5.7-2+deb12u5_ppc64el.deb 653c21e95557ee95b99ca8444e6b85d9710eb4518b9b2229cf8be1342d04ca20 153772 squid-purge_5.7-2+deb12u5_ppc64el.deb 649bb487c1d2da1be758badc0d7442ead5db0bbc9288e57cf1517e636f404573 10636 squid_5.7-2+deb12u5_ppc64el-buildd.buildinfo 3a6cdac596e723452ae0226d286d5e24846ae52fc3439f1e597da3727463525c 2592148 squid_5.7-2+deb12u5_ppc64el.deb 134ae11e6764a50c8e5f53eac071757cadfd17c0ae1ab246a9359a2ff187961d 201720 squidclient-dbgsym_5.7-2+deb12u5_ppc64el.deb 766b13900ded134b4e2f9b847cef466b9ccf81ba2b4139bc77b416200874e44b 165916 squidclient_5.7-2+deb12u5_ppc64el.deb Files: dd1f48404c219c4c87c152487ed22d79 169328 debug optional squid-cgi-dbgsym_5.7-2+deb12u5_ppc64el.deb 3f87a061531361aaac30aa0de55fdfbd 165600 web optional squid-cgi_5.7-2+deb12u5_ppc64el.deb 084e96c40129a37ece71c43aba9a6e27 22184524 debug optional squid-dbgsym_5.7-2+deb12u5_ppc64el.deb 3cafc5aefd7d0ce551135f744993db74 24464388 debug optional squid-openssl-dbgsym_5.7-2+deb12u5_ppc64el.deb e54b6d926e4fb223011a647d0129b5d0 2746492 web optional squid-openssl_5.7-2+deb12u5_ppc64el.deb f6b145e41318cc3ed5d9c921db9b1c7e 88932 debug optional squid-purge-dbgsym_5.7-2+deb12u5_ppc64el.deb 6c76fdccce64bf6970bf426953491ca3 153772 web optional squid-purge_5.7-2+deb12u5_ppc64el.deb 1db8fc06028e50fbc6e9107dda30831b 10636 web optional squid_5.7-2+deb12u5_ppc64el-buildd.buildinfo ec0242c6e154fecfc07ed9fff7c948b7 2592148 web optional squid_5.7-2+deb12u5_ppc64el.deb 5253a0dc7237a298cd475ae9027ced75 201720 debug optional squidclient-dbgsym_5.7-2+deb12u5_ppc64el.deb 18eaea7315c2b9838e40b307ba55d397 165916 web optional squidclient_5.7-2+deb12u5_ppc64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEYo4fOZBRi9qmvTxH1PowSTJ8+YQFAmk1vnoACgkQ1PowSTJ8 +YRq5A/+K5nxidqhslE4h4O3kBiaRXjlxVTPxPGOkX99rR9T60lCcEENqVhIC9Yw mgkhoLYidPfOlBgzt/T0d2B9VbKlCBWlTMvgTMDgEBM2hX8NiHRfaWRUDJK5PRDc v4zrgZ/P11BnglD37EFr5MBatwvTjGLv668TdoCEvyR2enV2l7r8RyKfiA1lI4gl ivqGLLZMo303QZnlUjhHspn+QwilYDGEFulYdINIohnex4tmjciWt6HnB+tCP6AE dazhEx5Y8GJgQZNgFQZFzxiaAuP1I51xAZXywYXMeQi8x+Y+z0BcLJOR44VBTPFD AKF8l46L5KRHGHGB5mGvbbLHEZirKe3qlX2MSpb/4PPQtygrqHTeP/g3slL7Ye+a 9MKYWIXbOoiPB/JrnA1AAg1OvY7JdT0aIJ6YHE8PBZ4mGtNMaJcpSJ5wlTMy6sBf mhDZzVGF10h5cZIM4y/33zwwmtQMS1WkiXSRlAksMstcHw5NFqJ0N5pKD+QulBMH +kyFsh6Qypj9hDQJwhCYXxL+bh/q/pE7RYi4Fm65/YcYmYrzs+bDkLNbbX1xxZ9S t+aDzgy25nGnIUUWrhOgmjQAzE46PkzYeV9JtE0SFUxsFDXiQzffbn8lUlTOJn/i TFnD3+rcdxnF2RDIdGdWymtiB44nTvk/JkFoCKdc9M6TfbN0zUc= =/MAU -----END PGP SIGNATURE-----