58762 – squid: Multiple issues (5.2)

Bug 58762 - squid: Multiple issues (5.2)

Summary: squid: Multiple issues (5.2)

Status:	CLOSED FIXED

Alias:	None

Product:	UCS
Classification:	Unclassified
Component:	Security updates
Version:	UCS 5.2
Hardware:	All Linux

Importance:	P3 normal
Target Milestone:	UCS 5.2-3-errata
Assignee:	Quality Assurance
QA Contact:	Dirk Wiesenthal

URL:
Keywords:

Depends on:
Blocks:

Reported:	2025-11-03 10:27 CET by Quality Assurance
Modified:	2025-11-05 14:26 CET (History)
CC List:	0 users

See Also:
What kind of report is it?:	Security Issue
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Customer ID:
Max CVSS v3 score:	10.0 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N) NVD

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Quality Assurance

2025-11-03 10:27:05 CET

New Debian squid 5.7-2+deb12u4A~5.2.3.202511031026 fixes:
This update addresses the following issue:
5.7-2+deb12u4 (Wed, 29 Oct 2025 00:05:08 +0100)
* CVE-2025-62168

Comment 1 Quality Assurance

2025-11-03 11:00:11 CET

--- mirror/ftp/pool/main/s/squid/squid_5.7-2+deb12u3A~5.2.2.202508251005.dsc
+++ apt/ucs_5.2-0-errata5.2-3/source/squid_5.7-2+deb12u4A~5.2.3.202511031026.dsc
@@ -1,8 +1,12 @@
-5.7-2+deb12u3A~5.2.2.202508251005 [Mon, 25 Aug 2025 10:05:50 -0000] Univention builddaemon <buildd@univention.de>:
+5.7-2+deb12u4A~5.2.3.202511031026 [Mon, 03 Nov 2025 10:27:14 -0000] Univention builddaemon <buildd@univention.de>:
 
   * UCS auto build. The following patches have been applied to the original source package
     001-enable-ssl.patch
     005-squid-4-14311.quilt
+
+5.7-2+deb12u4 [Wed, 29 Oct 2025 00:05:08 +0100] Moritz Mühlenhoff <jmm@debian.org>:
+
+  * CVE-2025-62168 (Closes: #1118341)
 
 5.7-2+deb12u3 [Mon, 18 Aug 2025 20:41:21 +0200] Moritz Mühlenhoff <jmm@debian.org>:
 

<http://piuparts.knut.univention.de/5.2-3/#5815207905310906467>

Comment 2 Dirk Wiesenthal

2025-11-05 11:29:45 CET

OK: bug
OK: yaml
OK: patch
OK: piuparts

Comment 4 Dirk Wiesenthal

2025-11-05 14:26:17 CET

<https://errata.software-univention.de/#/?erratum=5.2x274>