[ubuntu/jammy-security] squid 5.9-0ubuntu0.22.04.4 (Accepted)
Hlib Korzhynskyy
hlib.korzhynskyy at canonical.com
Tue Oct 28 19:02:53 UTC 2025
squid (5.9-0ubuntu0.22.04.4) jammy-security; urgency=medium
* SECURITY UPDATE: HTTP Authentication credential leak
- debian/patches/CVE-2025-62168.patch: Add maskSensitiveInfo parameter to
pack and pass it to packInto in src/HttpRequest.cc. Add maskSensitiveInfo
to pack in src/HttpRequest.h. Adapt code with new parameter in
src/client_side_reply.cc, and src/errorpage.cc. Remove request_hdr NULL
assign in src/errorpage.h.
- CVE-2025-62168
Date: 2025-10-27 17:15:15.318026+00:00
Changed-By: Hlib Korzhynskyy <hlib.korzhynskyy at canonical.com>
https://launchpad.net/ubuntu/+source/squid/5.9-0ubuntu0.22.04.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list