-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 05 Mar 2024 23:14:44 +0100
Source: squid
Binary: squid squid-cgi squid-cgi-dbgsym squid-dbgsym squid-openssl squid-openssl-dbgsym squid-purge squid-purge-dbgsym squidclient squidclient-dbgsym
Architecture: armhf
Version: 5.7-2+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-04) <buildd_armhf-arm-ubc-04@buildd.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
 squid      - Full featured Web Proxy cache (HTTP proxy GnuTLS flavour)
 squid-cgi  - Full featured Web Proxy cache (HTTP proxy) - control CGI
 squid-openssl - Full featured Web Proxy cache (HTTP proxy OpenSSL flavour)
 squid-purge - Full featured Web Proxy cache (HTTP proxy) - cache management uti
 squidclient - Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message util
Changes:
 squid (5.7-2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2023-46724, CVE-2023-46846, CVE-2023-46847, CVE-2023-46848,
     CVE-2023-49285, CVE-2023-49286, CVE-2023-50269, CVE-2024-23638,
     CVE-2024-25111, CVE-2024-25617.
   * Several security vulnerabilities have been discovered in Squid, a full
     featured web proxy cache. Due to programming errors in Squid's HTTP request
     parsing, remote attackers may be able to execute a denial of service attack
     by sending large X-Forwarded-For header or trigger a stack buffer overflow
     while performing HTTP Digest authentication. Other issues facilitate
     request smuggling past a firewall or a denial of service against Squid's
     Helper process management.
     In regard to CVE-2023-46728: Please note that support for the Gopher
     protocol has simply been removed in future Squid versions. There are no
     plans by the upstream developers of Squid to fix this issue. We recommend
     to reject all Gopher URL requests instead.
Checksums-Sha1:
 811d16b498e4434a17bf4e7d1ca2ae9bebdfc227 162620 squid-cgi-dbgsym_5.7-2+deb12u1_armhf.deb
 f3684c29a04c2a0ca18804a07b43f4fa13e91842 157764 squid-cgi_5.7-2+deb12u1_armhf.deb
 fca96fd350fadfcb91808204ff64c5275d17a5c7 23283028 squid-dbgsym_5.7-2+deb12u1_armhf.deb
 da9f512951172b9eb0aaa285daf1e08288343bb4 25511320 squid-openssl-dbgsym_5.7-2+deb12u1_armhf.deb
 88bd94ee4244909c1c455da9210aed99d20edfe5 2760640 squid-openssl_5.7-2+deb12u1_armhf.deb
 33cf7c5b09413d89d00dab9f19bc5a7a3f00f82c 88496 squid-purge-dbgsym_5.7-2+deb12u1_armhf.deb
 78daff3905dedf1a8133629a127dd30d36484951 150284 squid-purge_5.7-2+deb12u1_armhf.deb
 028003070d158b774d2c17e736e655a85c283fc0 10147 squid_5.7-2+deb12u1_armhf-buildd.buildinfo
 0c6008b2a72928ed7ea79dfdb15b54bad78b007d 2615872 squid_5.7-2+deb12u1_armhf.deb
 05cf703111f4fd16bfef16abe90134c6c1bf7f9a 201292 squidclient-dbgsym_5.7-2+deb12u1_armhf.deb
 df58ccf0909da1e44f99a2b994b4674371f01a3e 160032 squidclient_5.7-2+deb12u1_armhf.deb
Checksums-Sha256:
 19b78b05f7e11165286e3193259a28efa95fa26c616a553107e4c9ab547c4f2c 162620 squid-cgi-dbgsym_5.7-2+deb12u1_armhf.deb
 d3442b7007af0e362d7b78b531afe0795196c78e40ea5e6e3117c5795231207f 157764 squid-cgi_5.7-2+deb12u1_armhf.deb
 d60fa8c12d74057d63efd5deb11141eadc7cd07a266de990b6c63973dbc2c55f 23283028 squid-dbgsym_5.7-2+deb12u1_armhf.deb
 39344dbed6b1ee7f494140cd3a1032be83067031d0ce894bfab84b1df5e41938 25511320 squid-openssl-dbgsym_5.7-2+deb12u1_armhf.deb
 471066b27e553c28e6a57f62ebdbef78e18e2a33a09d0b84b3eb15f1c730dc04 2760640 squid-openssl_5.7-2+deb12u1_armhf.deb
 06cd2f2a4be89cf605a247f6e4dcdeb200caf8b6b2495fa8fb45eaa52eaed558 88496 squid-purge-dbgsym_5.7-2+deb12u1_armhf.deb
 9c2ffbbe6ebcc81579135b8957bdfd93a6e6a44db4280fb94993c51be2beb883 150284 squid-purge_5.7-2+deb12u1_armhf.deb
 5906b7adbe30b0831ebbed58ea7a9d3c71ffb9f3d4ff3e8fd2ed24e0a7dccf10 10147 squid_5.7-2+deb12u1_armhf-buildd.buildinfo
 f171f0f80c3360c1bd842775ae15198671e99ccaaf70bb435ad25a097d15a422 2615872 squid_5.7-2+deb12u1_armhf.deb
 f98467119aa9cb28806d30f4e43fa3760b6138575e9efdab15deb44e36281877 201292 squidclient-dbgsym_5.7-2+deb12u1_armhf.deb
 7f9a069004baf9265cfbfc7c48d1e9476ded1d002913fc5d89e6a6c8b48ef0e3 160032 squidclient_5.7-2+deb12u1_armhf.deb
Files:
 f42b35c0f2b6561c8f8ed81e0f0a96ff 162620 debug optional squid-cgi-dbgsym_5.7-2+deb12u1_armhf.deb
 63dfa5c41b5271dee4d4a24071758fa2 157764 web optional squid-cgi_5.7-2+deb12u1_armhf.deb
 35a81e21ab718344ee1478dd1c159086 23283028 debug optional squid-dbgsym_5.7-2+deb12u1_armhf.deb
 2ddee44d95ea1f1377674bc8efbea59c 25511320 debug optional squid-openssl-dbgsym_5.7-2+deb12u1_armhf.deb
 d1d007775b7f15404a122500593b4766 2760640 web optional squid-openssl_5.7-2+deb12u1_armhf.deb
 3c7a523975e8fb95c8c56ceaf6eaaef9 88496 debug optional squid-purge-dbgsym_5.7-2+deb12u1_armhf.deb
 fecead5043249fdb9e1ad05ca2010d84 150284 web optional squid-purge_5.7-2+deb12u1_armhf.deb
 a0c084a7c174cd2121e2c084a2322cc1 10147 web optional squid_5.7-2+deb12u1_armhf-buildd.buildinfo
 6d7b1b6f6b6b26d9ea451896248bbf6a 2615872 web optional squid_5.7-2+deb12u1_armhf.deb
 e1f2d37b377c94374b061786891466cf 201292 debug optional squidclient-dbgsym_5.7-2+deb12u1_armhf.deb
 246a5777a7bd0f7976eb52f1d3500e97 160032 web optional squidclient_5.7-2+deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=O8+4
-----END PGP SIGNATURE-----