-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 07 Mar 2024 20:52:04 +0100
Source: squid
Binary: squid squid-cgi squid-cgi-dbgsym squid-dbgsym squid-openssl squid-openssl-dbgsym squid-purge squid-purge-dbgsym squidclient squidclient-dbgsym
Architecture: mips64el
Version: 4.13-10+deb11u3
Distribution: bullseye-security
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
 squid      - Full featured Web Proxy cache (HTTP proxy GnuTLS flavour)
 squid-cgi  - Full featured Web Proxy cache (HTTP proxy) - control CGI
 squid-openssl - Full featured Web Proxy cache (HTTP proxy OpenSSL flavour)
 squid-purge - Full featured Web Proxy cache (HTTP proxy) - cache management uti
 squidclient - Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message util
Changes:
 squid (4.13-10+deb11u3) bullseye-security; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2023-46724, CVE-2023-46846, CVE-2023-46847 CVE-2023-49285,
     CVE-2023-49286, CVE-2023-50269, CVE-2024-23638, CVE-2024-25617.
   * Several security vulnerabilities have been discovered in Squid, a full
     featured web proxy cache. Due to programming errors in Squid's HTTP request
     parsing, remote attackers may be able to execute a denial of service attack
     by sending large X-Forwarded-For header or trigger a stack buffer overflow
     while performing HTTP Digest authentication. Other issues facilitate
     request smuggling past a firewall or a denial of service against Squid's
     Helper process management.
     In regard to CVE-2023-46728: Please note that support for the Gopher
     protocol has simply been removed in future Squid versions. There are no
     plans by the upstream developers of Squid to fix this issue. We recommend
     to reject all Gopher URL requests instead.
Checksums-Sha1:
 4baac50ea7dd0d4c10c692ab799d25c0a9b8ab30 161708 squid-cgi-dbgsym_4.13-10+deb11u3_mips64el.deb
 ff481f2a685317c42639d1bc46db36ed4b6d5262 171100 squid-cgi_4.13-10+deb11u3_mips64el.deb
 19f555c0fbfe0a5661826befc94e9895716332f8 19208244 squid-dbgsym_4.13-10+deb11u3_mips64el.deb
 dbf1df3edd4b72380e8b334885320f40dda9022f 21273100 squid-openssl-dbgsym_4.13-10+deb11u3_mips64el.deb
 34301a2a3da903e6bbbabe113b64c978af8492d1 2243760 squid-openssl_4.13-10+deb11u3_mips64el.deb
 4def47357ed5870caff37ffd994cd85807b45d79 78616 squid-purge-dbgsym_4.13-10+deb11u3_mips64el.deb
 97afb78925c4fb73ed2bd3db6c3271f4e3c4940f 161252 squid-purge_4.13-10+deb11u3_mips64el.deb
 b2e6f677b7d1b140ead4aba852fca4f940839996 10842 squid_4.13-10+deb11u3_mips64el-buildd.buildinfo
 1f56abf0f674a908dc3ea7f3a21e192e271d8e66 2115656 squid_4.13-10+deb11u3_mips64el.deb
 9f61b61b9f3f9bec11224fd501317dabde54b643 196028 squidclient-dbgsym_4.13-10+deb11u3_mips64el.deb
 132740ec48a309e13f0876fd328d58bde6358f2c 171804 squidclient_4.13-10+deb11u3_mips64el.deb
Checksums-Sha256:
 83596843e474948fa6b83239101f328dc0cd418819daba8a78d72260a049f8e2 161708 squid-cgi-dbgsym_4.13-10+deb11u3_mips64el.deb
 9a40730209ce496e211f581ce3b4775c857414030a1c484cdca8e0829cb98f77 171100 squid-cgi_4.13-10+deb11u3_mips64el.deb
 9dbd3ee40aab6a55c26f3d844fc1f132e6049dab985e4084ac2f220566d5fd91 19208244 squid-dbgsym_4.13-10+deb11u3_mips64el.deb
 848ed1ef9ad2183812f749d7c4f352e31346cc3af962fce640a48e099e7ec621 21273100 squid-openssl-dbgsym_4.13-10+deb11u3_mips64el.deb
 0617aeef6a80835aeff059fc9b4fa257e3befc74b367ccee3cf6a8bca0813818 2243760 squid-openssl_4.13-10+deb11u3_mips64el.deb
 5ee16f425ee94bc483025e4d28069f7adf66d0823cae8f5c0249416c39ac431e 78616 squid-purge-dbgsym_4.13-10+deb11u3_mips64el.deb
 91234b5f8fe27154b4947677c727d8b02a941727cd336db5eab1442037c02df4 161252 squid-purge_4.13-10+deb11u3_mips64el.deb
 70fbde7b7d1e84f5295e42017b9df59cb7000aa35c3b7a3db1565884c6c53778 10842 squid_4.13-10+deb11u3_mips64el-buildd.buildinfo
 4e4cebf355dfa2275e5a608b492bb683a74e987833d4c2018a9c9e5b87cb4651 2115656 squid_4.13-10+deb11u3_mips64el.deb
 b82d35139493abf8aad8fa8ede81070a69e0ad8183a0e7879811d03c0063080b 196028 squidclient-dbgsym_4.13-10+deb11u3_mips64el.deb
 462cf887957b107946c8397a24cc7b928b1d67cc03ce60850323f0d5009bfbb0 171804 squidclient_4.13-10+deb11u3_mips64el.deb
Files:
 ceae4f5394e90529d0b809d76552a611 161708 debug optional squid-cgi-dbgsym_4.13-10+deb11u3_mips64el.deb
 2077149128b412ac450b9ce007576125 171100 web optional squid-cgi_4.13-10+deb11u3_mips64el.deb
 0f833d7202bff3619ac36aac87e09227 19208244 debug optional squid-dbgsym_4.13-10+deb11u3_mips64el.deb
 708a3f3290fb009807f07eaa8d2cca8e 21273100 debug optional squid-openssl-dbgsym_4.13-10+deb11u3_mips64el.deb
 5e83ced5697531770981df3cc1f51c0e 2243760 web optional squid-openssl_4.13-10+deb11u3_mips64el.deb
 9a8bf1c0b76b33acb8f0a64f15b02ecd 78616 debug optional squid-purge-dbgsym_4.13-10+deb11u3_mips64el.deb
 71bd13fb84d3d5598e17c757870bbfd9 161252 web optional squid-purge_4.13-10+deb11u3_mips64el.deb
 b7821350e1a292662dab9fc759d06e63 10842 web optional squid_4.13-10+deb11u3_mips64el-buildd.buildinfo
 7fa142383f5349b9c2bb9400c7cab49a 2115656 web optional squid_4.13-10+deb11u3_mips64el.deb
 ec7c69e4015fb1436cbb15d6f2befe04 196028 debug optional squidclient-dbgsym_4.13-10+deb11u3_mips64el.deb
 b49e204b3fdffce08401bec30480150b 171804 web optional squidclient_4.13-10+deb11u3_mips64el.deb

-----BEGIN PGP SIGNATURE-----
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=TDdO
-----END PGP SIGNATURE-----