[Git][security-tracker-team/security-tracker][master] Reserve DLA-4369-1 for squid

Bastien Roucariès (@rouca) rouca at debian.org
Tue Nov 11 22:16:25 GMT 2025 


Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c550936 by Bastien Roucariès at 2025-11-11T23:16:09+01:00
Reserve DLA-4369-1 for squid

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -15522,7 +15522,6 @@ CVE-2025-59362 (Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. T
 	- squid 7.2-1 (bug #1117048)
 	[trixie] - squid 6.13-2+deb13u1
 	[bookworm] - squid <no-dsa> (Minor issue)
-	[bullseye] - squid <postponed> (Minor issue)
 	NOTE: https://github.com/squid-cache/squid/pull/2149
 	NOTE: https://github.com/squid-cache/squid/commit/250a18e0a80694b919972a1836cdfe20f2e1baa0 (master)
 	NOTE: https://github.com/squid-cache/squid/commit/0d89165ee6da10e6fa50c44998b3cd16d59400e9 (v7)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[11 Nov 2025] DLA-4369-1 squid - security update
+	{CVE-2025-59362 CVE-2025-62168}
+	[bullseye] - squid 4.13-10+deb11u6
 [11 Nov 2025] DLA-4368-1 libarchive - security update
 	{CVE-2025-5914 CVE-2025-5916 CVE-2025-5917 CVE-2025-5918}
 	[bullseye] - libarchive 3.4.3-2+deb11u3


=====================================
data/dla-needed.txt
=====================================
@@ -322,10 +322,6 @@ samba
   NOTE: 20251102: hence it makes sense to sync with these distributions. (apo/front-desk)
   NOTE: 20251107: Upcoming trixie SPU https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1119136 (Beuc/front-desk)
 --
-squid (rouca)
-  NOTE: 20251027: Added by Front-Desk (pochu)
-  NOTE: 20250110: Wait for review (rouca)
---
 suricata
   NOTE: 20250331: re added to fix next bunch of CVEs (ta)
   NOTE: 20250825: testing package (ta)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c5509360f294e2c6b9e254b52c5792ff997c76d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c5509360f294e2c6b9e254b52c5792ff997c76d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251111/d7ed7bc6/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list