-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 14 Nov 2025 20:44:29 +0100 Source: squid Binary: squid squid-cgi squid-cgi-dbgsym squid-dbgsym squid-openssl squid-openssl-dbgsym squid-purge squid-purge-dbgsym squidclient squidclient-dbgsym Architecture: mips64el Version: 5.7-2+deb12u5 Distribution: bookworm Urgency: medium Maintainer: mipsel Build Daemon (mipsel-osuosl-03) Changed-By: Bastien Roucariès Description: squid - Full featured Web Proxy cache (HTTP proxy GnuTLS flavour) squid-cgi - Full featured Web Proxy cache (HTTP proxy) - control CGI squid-openssl - Full featured Web Proxy cache (HTTP proxy OpenSSL flavour) squid-purge - Full featured Web Proxy cache (HTTP proxy) - cache management uti squidclient - Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message util Closes: 1117048 Changes: squid (5.7-2+deb12u5) bookworm; urgency=medium . * Non maintainer upload by LTS team * Fix CVE-2023-46728: Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. * Fix CVE-2025-59362 (Closes: #1117048) Squid mishandles ASN.1 encoding of long SNMP OIDs. * Remove Gopher support * Fix CVE-2024-45802: Disable ESI feature support. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This problem is fixed by changing the build configuration to specify the --disable-esi option. Checksums-Sha1: 01d8b3431e676a33b23329b89882ccff7eb925f1 170268 squid-cgi-dbgsym_5.7-2+deb12u5_mips64el.deb e0779a4d26e4e78e65fa43c23e4ab2e5972c0ffb 164076 squid-cgi_5.7-2+deb12u5_mips64el.deb 25255e624e93df16707ca4f26b59bb09bd11c1d4 22373928 squid-dbgsym_5.7-2+deb12u5_mips64el.deb b388d973900fca56eea2323ab0df76cb035f5c30 24659164 squid-openssl-dbgsym_5.7-2+deb12u5_mips64el.deb 731b1c086cc289d08a7c367b3a809cba283eed84 2289160 squid-openssl_5.7-2+deb12u5_mips64el.deb 2b5790b92d83c98e84719194c7bc68e4a0b22646 89852 squid-purge-dbgsym_5.7-2+deb12u5_mips64el.deb 27cac043bf40b52dd516d447b37dd1db5ef2bf83 153944 squid-purge_5.7-2+deb12u5_mips64el.deb f5b173c1f878fe820e6613cecb6ab55d7766d840 10452 squid_5.7-2+deb12u5_mips64el-buildd.buildinfo 0f07871c409a730a5b94fca858246fefc37635df 2157004 squid_5.7-2+deb12u5_mips64el.deb 9c0e7d234f39760425a2a04da3e22a88baf7ee06 205644 squidclient-dbgsym_5.7-2+deb12u5_mips64el.deb b20942965ac3ab0d6a1e79d639b1cdfae3e35810 164936 squidclient_5.7-2+deb12u5_mips64el.deb Checksums-Sha256: 271a41fcc32e181ece68864b6c9eaa28741a37be73af8ae7258229f5b904a13b 170268 squid-cgi-dbgsym_5.7-2+deb12u5_mips64el.deb 25ea9f0c4b4620edace61b54d7d8dc209e43594be7cb430c328907118fd6a305 164076 squid-cgi_5.7-2+deb12u5_mips64el.deb f4c02d08a28490cf1b55c1abe9406745cd68c69442870b18b896060c3af31c82 22373928 squid-dbgsym_5.7-2+deb12u5_mips64el.deb ab8f46d1d7b977ebe37ff3bb0f96bc77ef6a247cc9088f695b39d9e707569c56 24659164 squid-openssl-dbgsym_5.7-2+deb12u5_mips64el.deb d9a352f13853616d790a04d6438fc094493332f53a86823301424430b3a6c022 2289160 squid-openssl_5.7-2+deb12u5_mips64el.deb 4069cd3600432864d0b9926d946edf4245d535be2ba292d9924951fc70e49390 89852 squid-purge-dbgsym_5.7-2+deb12u5_mips64el.deb 57cfd54b2b46d0af9d410b3f354d8a84b609fa4f878b1a78bd1b89580b3ebdd1 153944 squid-purge_5.7-2+deb12u5_mips64el.deb dbbd32899e1e89a5304516760f516e9a8425f9cfda9bc31e2bb3fc2ef7950372 10452 squid_5.7-2+deb12u5_mips64el-buildd.buildinfo c22d03e7f9f19ef4d5f5902e05ff98e519b017c22c5d765c2b23f13a067f7573 2157004 squid_5.7-2+deb12u5_mips64el.deb 1dcb0596680f19198ac08904ef9f3b6f01f7cd231d07f4b8c5b733ea12388233 205644 squidclient-dbgsym_5.7-2+deb12u5_mips64el.deb b476c2305439189b694e417ac108e1bcb3ee1facff0291b08a711446080a5129 164936 squidclient_5.7-2+deb12u5_mips64el.deb Files: dac5b780c116ce438555f91bc672b83f 170268 debug optional squid-cgi-dbgsym_5.7-2+deb12u5_mips64el.deb 50f7306bc51926698d10427294bec075 164076 web optional squid-cgi_5.7-2+deb12u5_mips64el.deb ac0ccb6e2d198107f7fcdbb6f0e1773f 22373928 debug optional squid-dbgsym_5.7-2+deb12u5_mips64el.deb 8df05f5cdc5bf6e29f712f723ac689ee 24659164 debug optional squid-openssl-dbgsym_5.7-2+deb12u5_mips64el.deb 53acb97049a4edbe8a909017d4f08776 2289160 web optional squid-openssl_5.7-2+deb12u5_mips64el.deb c8f73204ffec238f89f95db73b647b75 89852 debug optional squid-purge-dbgsym_5.7-2+deb12u5_mips64el.deb 3cc4aeb3161fd48a1f35cb0999a5afa5 153944 web optional squid-purge_5.7-2+deb12u5_mips64el.deb ecdc67f2dc9276f5ffefceea5bcf468c 10452 web optional squid_5.7-2+deb12u5_mips64el-buildd.buildinfo 80cba5864878a3d6c36c0c68bac55e74 2157004 web optional squid_5.7-2+deb12u5_mips64el.deb 4f68dffa2e41307d853239758fdf6ddf 205644 debug optional squidclient-dbgsym_5.7-2+deb12u5_mips64el.deb e39a61c38dddf35c5fab4d86c23d0faa 164936 web optional squidclient_5.7-2+deb12u5_mips64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEesE3YcWKZXIkRPMemf85J+x5/aoFAmk1xVkACgkQmf85J+x5 /ap7lQ//VHmoLfRIW75z4bh+JilruCwzq/i+tiTuXQKvn+QErAo6j9tEOyn5Nk5i pqhNujS84MMzILYs85P9nrD4B9bdGgRT9dqhA5gU9zlbTnAQXl9Ut11R3Z/H9T0E SMdPdGXzSEZowiYbPqOn5ZwWBmeYInwOqnF0fSvvbzfSvAAKOR8cH7XyedQE9S1v 2IIKSWvR2NMwKVsfDfkReDmaYoP3avQU4CoePExdj5aBg8jOpDYWIhPrfmFURpl1 cdCoJ4zDCuDwTvnhZMc6finZma8evWmATQMsrWSubRIkKVn1zOHMzxpkOEpr72h9 MQ2CT4mimMi3wHN9cySpQX4VFA+L2e2LtS76eS+IYio7iej7tMlfdgtRL+2De6LJ K2lwK5GHcRbCsfjf2jOvihx7cGO7zu2p1AzEbhKrLX4eo3wHFVO7drKunqXljo4I OgshkJ//sKUfliw3mHjnY4DQUQEDcL0lod0kqdhJEbe6g+j48t3Luo6CkL2MfU0O 245CPB0BBNSO87maKYdYvtjivfsdLvw5L8DUH5cRaflvUq4+2+6cCI7I//FFYfEI dGqblC0WwJsyxLf/LAuGTj4oYrVycWX89Um1P+z+6CP4FF3RHgUXYGRZ68LDJRjC bvq8FwgoPQpnjHTUt5A+on7hzGHUEllsd7TBYGWNzXSQDF5uKuQ= =srXu -----END PGP SIGNATURE-----