Release date:
2025-11-18 18:21:20 UTC
Description:
* SECURITY UPDATE: failure to redact HTTP authentication credentials in error
handling allows information disclosure
- debian/patches/CVE-2025-62168.patch: Fix HttpRequest::pack to mask
sensitive information to prevent disclosure
- CVE-2025-62168
Updated packages:
-
squid_4.6-1+deb10u10+tuxcare.els3_amd64.deb
sha:b5a0911b2b542c3d767f9002756d4c9637e77e28
-
squid-cgi_4.6-1+deb10u10+tuxcare.els3_amd64.deb
sha:00a27dd7cfaf115e93964a59db9f0185e3f85bdc
-
squid-common_4.6-1+deb10u10+tuxcare.els3_all.deb
sha:aea0564d9da3a9834fb7646c0d2d5dee9d5ca530
-
squid-purge_4.6-1+deb10u10+tuxcare.els3_amd64.deb
sha:d327868274d68cbb924cbb8e32f28c0bfef9d257
-
squid3_4.6-1+deb10u10+tuxcare.els3_all.deb
sha:608265b7e7a1ca3a2bea52badb0914dd4425d705
-
squidclient_4.6-1+deb10u10+tuxcare.els3_amd64.deb
sha:facc4a36cf121f8e298c20e921355c499cc24d53
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
