-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 10 Jul 2020 21:58:09 +0200 Source: squid3 Binary: squid3 squid squid-dbg squid-common squidclient squid-cgi squid-purge Architecture: source amd64 all Version: 3.5.23-5+deb9u2 Distribution: stretch-security Urgency: medium Maintainer: Luigi Gangitano <luigi@debian.org> Changed-By: Markus Koschany <apo@debian.org> Description: squid - Full featured Web Proxy cache (HTTP proxy) squid-cgi - Full featured Web Proxy cache (HTTP proxy) - control CGI squid-common - Full featured Web Proxy cache (HTTP proxy) - common files squid-dbg - Full featured Web Proxy cache (HTTP proxy) - Debug symbols squid-purge - Full featured Web Proxy cache (HTTP proxy) - control utility squid3 - Transitional package squidclient - Full featured Web Proxy cache (HTTP proxy) - control utility Changes: squid3 (3.5.23-5+deb9u2) stretch-security; urgency=medium . * Non-maintainer upload by the LTS team. * Fix CVE-2018-19132, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2020-11945, CVE-2020-8449 and CVE-2020-8450. Several security vulnerabilites were discovered in squid3. Due to incorrect input validation and URL request handling it was possible to bypass access restrictions which allowed access to restricted HTTP servers and to cause a denial-of-service. Checksums-Sha1: f7a9580905ab1255334107909723e25f8a4d6a76 2733 squid3_3.5.23-5+deb9u2.dsc 629fcfc81f426b050b2451b9fa68380844d87e24 53472 squid3_3.5.23-5+deb9u2.debian.tar.xz 39620a48ec74039c6863373a4038e675186ca660 167912 squid-cgi_3.5.23-5+deb9u2_amd64.deb 0c25afbdd7cc5f0574a6d71d2bef822157cb9854 284896 squid-common_3.5.23-5+deb9u2_all.deb 72bc8e3742496567a2349d327f47212406cd777f 21651938 squid-dbg_3.5.23-5+deb9u2_amd64.deb 1557c6ab6cdf7a9bcddda52bb9f8ec96dc5a3eba 158006 squid-purge_3.5.23-5+deb9u2_amd64.deb 88779d52354c4bf602e72b5f47b8a6e032c61503 139216 squid3_3.5.23-5+deb9u2_all.deb 4944a9e623cf556310d12f89f10f88624cb3fef6 10124 squid3_3.5.23-5+deb9u2_amd64.buildinfo ab8ec3df2d6d9e41e6aae68fe94fee594bfec045 2317092 squid_3.5.23-5+deb9u2_amd64.deb 3369a984eb8b27374383c418e4e7c55177ec4a65 169216 squidclient_3.5.23-5+deb9u2_amd64.deb Checksums-Sha256: 911a9edf53539587cac61a4096f0151906be4e895ba1dd8d4bd2763d21239966 2733 squid3_3.5.23-5+deb9u2.dsc 029327903efd7b7b5582951ef61051de245dfe42914a6ed92d4275b55d1d7a51 53472 squid3_3.5.23-5+deb9u2.debian.tar.xz b3bf7ba6ae16cfc854223f7fa223cc411533bcf093886da7b804ea6d9b6ef0a2 167912 squid-cgi_3.5.23-5+deb9u2_amd64.deb b4289e6d6b5e84d6c585af13875f3f49e5aa847ca20f4bf6c2c015eae3b8418a 284896 squid-common_3.5.23-5+deb9u2_all.deb 835ccfb722d0e19c8e7ca101cd3cc277121f0faf6e870dfddba364761222292c 21651938 squid-dbg_3.5.23-5+deb9u2_amd64.deb 62d21920cd8737d3928fab36f9a119cd7705be9e5554e86eee95b506e14707cf 158006 squid-purge_3.5.23-5+deb9u2_amd64.deb 92462045311016f4ecf4b6f21442ddac7a46a64db837d4b04a10ba7021b94f5f 139216 squid3_3.5.23-5+deb9u2_all.deb ddba3b54bae9f0e884f1168463f9577d3372be6942840cefcf5352c9249fd03a 10124 squid3_3.5.23-5+deb9u2_amd64.buildinfo 3be0965b5a61def47d27384a61dc53fd2f39f10434bf9bafd77ba338f0efe9e1 2317092 squid_3.5.23-5+deb9u2_amd64.deb 2f0b6e478503773328b8d6d346aa1b0b4b00a6afe4eed3f157f5e24c836083a3 169216 squidclient_3.5.23-5+deb9u2_amd64.deb Files: e49741569c4ea1c0bf2d0f1d082dbef0 2733 web optional squid3_3.5.23-5+deb9u2.dsc fe20a972b2cd77cb66aa9d063f38f2b0 53472 web optional squid3_3.5.23-5+deb9u2.debian.tar.xz 65d9ce3ca69af0b8816bcb84dc95e582 167912 web optional squid-cgi_3.5.23-5+deb9u2_amd64.deb 3b1ee5789a3bf5933541606a63b26c79 284896 web optional squid-common_3.5.23-5+deb9u2_all.deb 3a81a1af5d7c0c4d081d47404f9eaa5d 21651938 debug extra squid-dbg_3.5.23-5+deb9u2_amd64.deb 292b100c2cc2289a521f4f5c4774052b 158006 web optional squid-purge_3.5.23-5+deb9u2_amd64.deb a7b6b67a3c2f5b86c77a884e7175553a 139216 oldlibs extra squid3_3.5.23-5+deb9u2_all.deb 0758452bf15e4507ef6d564f0a913d6f 10124 web optional squid3_3.5.23-5+deb9u2_amd64.buildinfo ba356d264d3a59db6f0513323b5d7926 2317092 web optional squid_3.5.23-5+deb9u2_amd64.deb ec2bd362d72a1481dea33c7ca32f172c 169216 web optional squidclient_3.5.23-5+deb9u2_amd64.deb -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAl8I1M9fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkYOEP/jemlwvbEZC4ppg3xULV/LeGLcdrJzHRDbz3 XpjrUmkISrFh6WgmFp4gTfKDstv0cTaS3Cxv4J4NqoMOQALsYjeDdYqaasMHrC9d U1k2AIffmiyG1KVesZUCAf0NGwlD6m531IyNEctQdA/4Lv4CwmbK1Z24ZX3zXfKt XVDgWpwsoJCXAGT8hOSDUcTt+6hsIczMzf+NpH8KAX5JAG1pj6mFuWvNNU8c94RX kfd1splYk3wTGl2GIRaP98I58mFoUuxauWJW9UUOxVOmHVb4NV3PT3Z0UFo70Bnn EnVxhgg6ApF0N05/ttzYVbtx+xYKd0HhbrLpKHwzKgMbK/omAz8GD0fgd+dvGpG6 iHjKtKFJkuwNJHRquTHY1oMWvJFsjX0CYfxmubYoSqYfmA9bH6NU8Aag6NJNgFqa RkkvmW+4FUWNjfljwRbxmXjvd3V+KbzdR4fb23FCQlkCTIqUrxQFfsSyCnhEPzLl ezZQbKXQ/wRySAY/8yR7o8KHrGNtK1Jcb0Rrt9DQAxxf1R8pEmJxtTiVzcgN7t2e VwZfY362rSn4OSNzkm29U6AQf2lUaBGqPp0hHA+svn9nyxWvnzURIm9VFI7/vmna z0d1AUU2+70Fk/TDlIBvQi/idPLCFBrN2PwCLURS79GK7+lcpGxYnV9y/LXMTuxh 2OuDJ95S =+tKB -----END PGP SIGNATURE-----