[ubuntu/resolute-proposed] squid 6.13-1ubuntu5 (Accepted)
Hlib Korzhynskyy
hlib.korzhynskyy at canonical.com
Tue Oct 28 18:32:17 UTC 2025
squid (6.13-1ubuntu5) resolute; urgency=medium
* SECURITY UPDATE: HTTP Authentication credential leak
- debian/patches/CVE-2025-62168.patch: Add maskSensitiveInfo parameter to
pack and pass it to packInto in src/HttpRequest.cc. Add maskSensitiveInfo
to pack in src/HttpRequest.h. Adapt code with new parameter in
src/client_side_reply.cc, and src/errorpage.cc. Remove request_hdr NULL
assign in src/errorpage.h.
- CVE-2025-62168
Date: Tue, 28 Oct 2025 14:58:21 -0230
Changed-By: Hlib Korzhynskyy <hlib.korzhynskyy at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/squid/6.13-1ubuntu5
-------------- next part --------------
Format: 1.8
Date: Tue, 28 Oct 2025 14:58:21 -0230
Source: squid
Built-For-Profiles: noudeb
Architecture: source
Version: 6.13-1ubuntu5
Distribution: resolute
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Hlib Korzhynskyy <hlib.korzhynskyy at canonical.com>
Changes:
squid (6.13-1ubuntu5) resolute; urgency=medium
.
* SECURITY UPDATE: HTTP Authentication credential leak
- debian/patches/CVE-2025-62168.patch: Add maskSensitiveInfo parameter to
pack and pass it to packInto in src/HttpRequest.cc. Add maskSensitiveInfo
to pack in src/HttpRequest.h. Adapt code with new parameter in
src/client_side_reply.cc, and src/errorpage.cc. Remove request_hdr NULL
assign in src/errorpage.h.
- CVE-2025-62168
Checksums-Sha1:
06f0013ed873d15c329f8ffce7ee8de6056b633b 2782 squid_6.13-1ubuntu5.dsc
c2d8d31a15601b9ad3a9623930b6096942fa4a29 57932 squid_6.13-1ubuntu5.debian.tar.xz
ca243645f1215fb7dbbd8f55d62f6910777ecd58 8356 squid_6.13-1ubuntu5_source.buildinfo
Checksums-Sha256:
9a65c97d5f955e589e30b6bb11b514400f99d6cbaee15fa54de78d15ee6f67f3 2782 squid_6.13-1ubuntu5.dsc
3cb5a2c26255b0f1ced413b1925b0a73fb63c00e6ee844bc7d054bfb7f75b2e4 57932 squid_6.13-1ubuntu5.debian.tar.xz
db3103a6ad3a9482ba2801acb92fe227d80421860605fc2c2f8445245f06e95a 8356 squid_6.13-1ubuntu5_source.buildinfo
Files:
b19cc87908bf3ec4aba8de9e337e1454 2782 web optional squid_6.13-1ubuntu5.dsc
c97c0f4d06204fe7110ab9cebfba43a1 57932 web optional squid_6.13-1ubuntu5.debian.tar.xz
780b5a0ce170d2deee3a544984b14eba 8356 web optional squid_6.13-1ubuntu5_source.buildinfo
Original-Maintainer: Luigi Gangitano <luigi at debian.org>
More information about the Resolute-changes
mailing list