* SECURITY UPDATE: potential Denial of Service via TLS connection - debian/patches/CVE-2020-14058.patch: Fix sending of unknown validation errors to cert validator - CVE-2020-14058 * SECURITY UPDATE: improper Validation of Specified Index leads to Denial of Service via TLS Handshake vulnerability - debian/patches/CVE-2023-46724.patch: Fix validation of certificates with CN=* due to Buffer UnderRead in SSL CN Parsing issue (#1523) - CVE-2023-46724 * SECURITY UPDATE: denial of Service vulnerability in HTTP Chunked decoder due to uncontrolled recursion bug - debian/patches/CVE-2024-25111.patch: Fix infinite recursion when parsing HTTP chunks, prevent progress in call chain by stopping HttpStateData recursion - CVE-2024-25111 * SECURITY UPDATE: denial of Service vulnerability in the NTLM authentication credentials parser due to incorrect input validation - debian/patches/CVE-2020-8517.patch: Fix incorrect input validation allowing writing outside of buffer and leading to denial of service - CVE-2020-8517 * SECURITY UPDATE: denial of Service vulnerability against HTTP header parsing due to a Collapse of Data into Unsafe Value - debian/patches/CVE-2024-25617.patch: Improve handling of expanding HTTP header values to prevent DoS - CVE-2024-25617 * SECURITY UPDATE: denial of Service vulnerability by a trusted server - debian/rules: Disable ESI due to unfixed multiple issues in ESI causing DoS by a trusted server - debian/control: Remove dependencies used by ESI - CVE-2024-45802