-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 07 Mar 2024 20:52:04 +0100
Source: squid
Binary: squid squid-cgi squid-cgi-dbgsym squid-dbgsym squid-openssl squid-openssl-dbgsym squid-purge squid-purge-dbgsym squidclient squidclient-dbgsym
Architecture: mipsel
Version: 4.13-10+deb11u3
Distribution: bullseye-security
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
 squid      - Full featured Web Proxy cache (HTTP proxy GnuTLS flavour)
 squid-cgi  - Full featured Web Proxy cache (HTTP proxy) - control CGI
 squid-openssl - Full featured Web Proxy cache (HTTP proxy OpenSSL flavour)
 squid-purge - Full featured Web Proxy cache (HTTP proxy) - cache management uti
 squidclient - Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message util
Changes:
 squid (4.13-10+deb11u3) bullseye-security; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2023-46724, CVE-2023-46846, CVE-2023-46847 CVE-2023-49285,
     CVE-2023-49286, CVE-2023-50269, CVE-2024-23638, CVE-2024-25617.
   * Several security vulnerabilities have been discovered in Squid, a full
     featured web proxy cache. Due to programming errors in Squid's HTTP request
     parsing, remote attackers may be able to execute a denial of service attack
     by sending large X-Forwarded-For header or trigger a stack buffer overflow
     while performing HTTP Digest authentication. Other issues facilitate
     request smuggling past a firewall or a denial of service against Squid's
     Helper process management.
     In regard to CVE-2023-46728: Please note that support for the Gopher
     protocol has simply been removed in future Squid versions. There are no
     plans by the upstream developers of Squid to fix this issue. We recommend
     to reject all Gopher URL requests instead.
Checksums-Sha1:
 b025efca99cc97c398e99db90ed8166b9937d49a 154576 squid-cgi-dbgsym_4.13-10+deb11u3_mipsel.deb
 e3c703535a49e3721b8ddec2c95d812ba5bb192b 170768 squid-cgi_4.13-10+deb11u3_mipsel.deb
 607ef18dc3d3ccfe0d9af8d0c198e45ba8ea7854 18377780 squid-dbgsym_4.13-10+deb11u3_mipsel.deb
 346c8262c1ed80b9cd8701cd8ce1ecdecc1338e9 20377700 squid-openssl-dbgsym_4.13-10+deb11u3_mipsel.deb
 40dc1fbc5dc6414fafd0587284456c802e8fdb72 2260380 squid-openssl_4.13-10+deb11u3_mipsel.deb
 bb4a0f65eddfdd75e41df94bc647fad4f51259b3 75148 squid-purge-dbgsym_4.13-10+deb11u3_mipsel.deb
 58593f2965859a7877cac8992e9031c3966fdb1c 161132 squid-purge_4.13-10+deb11u3_mipsel.deb
 8b05df294ffcab117ed28e56e555b8c699d20dd7 10771 squid_4.13-10+deb11u3_mipsel-buildd.buildinfo
 71a51da87391abadce903f935b7ff6db58c46425 2133620 squid_4.13-10+deb11u3_mipsel.deb
 fa6dc86469247c226ed58c00ac1b271aaaf085f9 187072 squidclient-dbgsym_4.13-10+deb11u3_mipsel.deb
 ab2f704d7dd22499b4a1709f58a3b129e638cfca 171412 squidclient_4.13-10+deb11u3_mipsel.deb
Checksums-Sha256:
 41c3af18c7edd932c0d1c0b1c8779db2bd8c22c9978c5f2107fb7186ffc47028 154576 squid-cgi-dbgsym_4.13-10+deb11u3_mipsel.deb
 6c5603db31608d89aed6ab7761876873a8ee33999cfa78a3a5d31e5eb3dfde41 170768 squid-cgi_4.13-10+deb11u3_mipsel.deb
 0012f2f2e5cea6d87d01aba3cc7394a770928b4c0c920bed0a8c83cfd0d4a2a5 18377780 squid-dbgsym_4.13-10+deb11u3_mipsel.deb
 34902f46c16eb398cb2e1508461c923c6bca5dfb61071191440e9ffa5daa1123 20377700 squid-openssl-dbgsym_4.13-10+deb11u3_mipsel.deb
 6d9e08a172377846e4fa75c2d21b6fcb0ce9b84d9a0bdedbd6e6298a4b48c9b5 2260380 squid-openssl_4.13-10+deb11u3_mipsel.deb
 4db50cb7a8f6c88c4f5a5088d97bff8c69b06974cffc9169b72ec2496c90380f 75148 squid-purge-dbgsym_4.13-10+deb11u3_mipsel.deb
 062bd182bcaf362dd8371a3d61e51cd1fdee9bc91b9fa222282c524813214a5b 161132 squid-purge_4.13-10+deb11u3_mipsel.deb
 44141f5c306a26cf20be856cdfcb94623a82a6fa6919a101c32a87f045ced4f5 10771 squid_4.13-10+deb11u3_mipsel-buildd.buildinfo
 37b82b28e9a3da64ebb835735a1877198df66244b587f765d27ee84d4a0901bb 2133620 squid_4.13-10+deb11u3_mipsel.deb
 3a3bd5870f06c2e1a7ab8be78ae81ecaad3f498eb4211e7805160d2989692f9d 187072 squidclient-dbgsym_4.13-10+deb11u3_mipsel.deb
 de5c1ca1bc6262c81eb68a63d8ee8d3f552e87d21217094fffbc2041d9812ae0 171412 squidclient_4.13-10+deb11u3_mipsel.deb
Files:
 419f461817c712fee909957696861848 154576 debug optional squid-cgi-dbgsym_4.13-10+deb11u3_mipsel.deb
 23e1b11f8f41c72fe09144c069c94786 170768 web optional squid-cgi_4.13-10+deb11u3_mipsel.deb
 0ef5727facb471a14d3a94a434ad0bad 18377780 debug optional squid-dbgsym_4.13-10+deb11u3_mipsel.deb
 40f4eaac3b8af9663b3c2f44a530e1e6 20377700 debug optional squid-openssl-dbgsym_4.13-10+deb11u3_mipsel.deb
 64969ef947e619b720ec3a9182cbb052 2260380 web optional squid-openssl_4.13-10+deb11u3_mipsel.deb
 c5b140c5e95b568c1a4822ed0c905041 75148 debug optional squid-purge-dbgsym_4.13-10+deb11u3_mipsel.deb
 8d818b2728ca26d98c4292521247c025 161132 web optional squid-purge_4.13-10+deb11u3_mipsel.deb
 a36fcba8544c8371802a770c646dd2e7 10771 web optional squid_4.13-10+deb11u3_mipsel-buildd.buildinfo
 1179a8836879cce790e4b859ed879375 2133620 web optional squid_4.13-10+deb11u3_mipsel.deb
 14ecdc46252d85219208ef7a1cbc9f12 187072 debug optional squidclient-dbgsym_4.13-10+deb11u3_mipsel.deb
 68f3765f9631b300204956d43dd33b14 171412 web optional squidclient_4.13-10+deb11u3_mipsel.deb

-----BEGIN PGP SIGNATURE-----
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=rSQA
-----END PGP SIGNATURE-----