-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 21 Jun 2023 11:32:58 +0200 Source: trafficserver Architecture: source Version: 9.2.0+ds-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: Jean Baptiste Favre <debian@jbfavre.org> Changed-By: Jean Baptiste Favre <debian@jbfavre.org> Closes: 1038248 Changes: trafficserver (9.2.0+ds-1~deb12u1) bookworm-security; urgency=high . * Multiple CVE fixes for 9.2.x (Closes: #1038248) + CVE-2022-47184: Exposure of Sensitive Information to an Unauthorized Actor vulnerability + CVE-2023-30631: Improper Input Validation vulnerability + CVE-2023-33933: Exposure of Sensitive Information to an Unauthorized Actor vulnerability Checksums-Sha1: 14a6f6192b94f3ee3d84be476386a9590f478b7b 3024 trafficserver_9.2.0+ds-1~deb12u1.dsc 8c11ed54bd0f4f131051ef4adab5e3f92b0b3e77 8865636 trafficserver_9.2.0+ds.orig.tar.xz 9ae4c040f1a7f4931376f66b8236e90f3a5d5480 39828 trafficserver_9.2.0+ds-1~deb12u1.debian.tar.xz b3e6f2a6149b5738ac46fbc97fce36a6a56afe50 12368 trafficserver_9.2.0+ds-1~deb12u1_source.buildinfo Checksums-Sha256: e1dc96e73441312528576c33a56a159754c3adbd857a2fe7a74597ecb2859b74 3024 trafficserver_9.2.0+ds-1~deb12u1.dsc 11be65a2b118646fcc3500e63dd1ecce9951f814b02fd3e4d6b8070dc8c1f192 8865636 trafficserver_9.2.0+ds.orig.tar.xz 939107139a1de9d561985642729685948c21525db0132a442ede47275f04cac8 39828 trafficserver_9.2.0+ds-1~deb12u1.debian.tar.xz 764eb1326817e08cf7784faab92d5c6f248674c1816a7239723ae673a485628f 12368 trafficserver_9.2.0+ds-1~deb12u1_source.buildinfo Files: a54ce1effa6e7889309a3cbf528cae89 3024 web optional trafficserver_9.2.0+ds-1~deb12u1.dsc 342e06e020b6e3916ab892a29b479414 8865636 web optional trafficserver_9.2.0+ds.orig.tar.xz f8148f6ddfa66583ddf5c51d07cceea9 39828 web optional trafficserver_9.2.0+ds-1~deb12u1.debian.tar.xz ff2fc51e5702a8afc2cb946119e343ce 12368 web optional trafficserver_9.2.0+ds-1~deb12u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEToRbojDLTUSJBphHtN1Tas99hzcFAmSS3CFfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDRF ODQ1QkEyMzBDQjRENDQ4OTA2OTg0N0I0REQ1MzZBQ0Y3RDg3MzcACgkQtN1Tas99 hzfnfg/8C3GYgpb/GwMzXtgTyAg5LVgFWXB6DlyMNJa7vBFmiXjXWlEJQcq62cqw pRKN08e8/p5g2A4sBmnmJWwtt7pv5t1SgkFO7QygNeJzKwX5b9wm086AJ4hKybrO KKM7Wiycun60TIqB0WYeh5R1Q+gosFnruO9wJJLYxNrcVfcN0mJsz9JwHuTy+BSt 6D++2+11uLWdD+wScI8i5WqU0zpKD7I5+xO55WOAgA85ZsnmkE4S1G4rI7ea3mZH W5BBLpRG6iFpH8jSuyTiknjO/q5he6tL5WS9JeZpnWCGWeYxMhvwhRUx4vYPZAhs 1K1iIV9hp3jOiWTEeWMWnegOAIA4l9/Oz8REDWOD6J0rS7AArSzKVQi1UZBvjCtm 9+hTK73V8eKeDLYWYq0z+QzRpZ1BgOECZi8qOPSLCcycRqaAxheT0u18MU+DfQKG WgjFDiPU8iJ2B/lOhjQB2G2SidUZO3WRFPm1H50681bGqkTZjGYp7Skh1IAgeZSt TdNr6EQJd0UqHPySKpiofBDWdgRb70jxTWpMepehEfNhhqymMwT3ugeduivZwC3x iarGXd7Kjg87nkBcBHQqXmsk/ZLxEFzSkoO7wWbp9wpTsI/+Jt4Glk1bVF0EwL0W W8WGqPfiS8I+G3nTcbCNE89hwKu/r4fWfw6J4oQK59YmDYR5QU0= =bAiu -----END PGP SIGNATURE-----
