-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Jan 2025 07:26:33 +0530
Source: puma
Binary: puma puma-dbgsym
Architecture: mips64el
Version: 5.6.5-3+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Abhijith PA <abhijith@debian.org>
Description:
 puma       - threaded HTTP 1.1 server for Ruby/Rack applications
Closes: 1050079 1060345 1082379
Changes:
 puma (5.6.5-3+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * d/patches/
    + CVE-2023-40175.patch: Fix CVE-2023-40175, incorrect behavior when
      parsing chunked transfer encoding bodies and zero-length
      Content-Length headers in a way that allowed HTTP request
      smuggling. (Closes: #1050079)
 .
    + CVE-2024-21647.patch: Fix CVE-2024-21647 by limiting the size of
      chunk extensions. (Closes: #1060345)
 .
    + CVE-2024-45614.patch: Fix CVE-2024-45614, clients could clobber
      values set by intermediate proxies (such as X-Forwarded-For) by
      providing a underscore version of the same header.
      (Closes: #1082379)
Checksums-Sha1:
 e0a71c45c166be5b9e2cbcc199c4c4f6fcbc1c99 37216 puma-dbgsym_5.6.5-3+deb12u1_mips64el.deb
 f6d7a44f3d522a71151465293f76e6a57f72bb68 9675 puma_5.6.5-3+deb12u1_mips64el-buildd.buildinfo
 003f0220af4566975e0f911c13e4d206c86caefd 155232 puma_5.6.5-3+deb12u1_mips64el.deb
Checksums-Sha256:
 a71835a80189aa4abed8f487a4d1df819743bf047ed1db310f8561123df1956b 37216 puma-dbgsym_5.6.5-3+deb12u1_mips64el.deb
 933627a30959d680efac3eebb98889a6ff0dbe798c85db5fbf0a73d61c4d0f8e 9675 puma_5.6.5-3+deb12u1_mips64el-buildd.buildinfo
 2595a97d0a34520f187c9df0ac753b198cb7c7d5fbe1de30c02745e17e8cb40a 155232 puma_5.6.5-3+deb12u1_mips64el.deb
Files:
 98a24084825e6600a502380d5fd290c7 37216 debug optional puma-dbgsym_5.6.5-3+deb12u1_mips64el.deb
 08567d730d073ed83bef99eede01824b 9675 web optional puma_5.6.5-3+deb12u1_mips64el-buildd.buildinfo
 2942df1b24395b86cdad06dce18df75f 155232 web optional puma_5.6.5-3+deb12u1_mips64el.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEERbXMbY9VMQqnSaVEV4aVsMglzVcFAmee9GYACgkQV4aVsMgl
zVcxSw//RSu9KJappaLN8si/6938QmTkEUzpqkPsSz5PjggbxYCETR4RMRDuSuEA
efUSLEPjAnLwYmuVXujD5/LbSJwiuPGNBib3z0ZrSNl+3bZjypEeCF8HyJ2i3TVd
TPy1XUbiDgzy3CQux5NmY71mEopolfLnVU5e/ajbzmh9Mi0ljXRLMq4t7IGLREKD
Kesd47MpkyXqZKgZQK87MrUE0pi8MAdguM7kaoDlBeMM0BK/CFMhvtJXqrY0cDGQ
yeLC5nFfyAleMUkD8uobfImwfqqkkMJy4K2BjqDTXiGDfwrZkV6efrsrUX2Fl9N8
EF+6dX32W2HVrt7E+iUCblxc1FpMlbq3c5uAYgtid+8hrB9eJ39jb32JCWw7oKVo
xvfwCkOrrQQAVW9SUXIl4S3L273/gruIeF2vwoMSifXwhCSCtW3QIB0c2s6eUNL8
KM1AljETtUN4sh85yofr9uRikLz+ZrtyPudne2NhttdryDiiLJOaF5cGijTm3v8t
ZvP1vEf8AlxGg6ErlCahFl37wS9mYfj7PKr1TAoDnipLRr72bp/JqXU6UHZoc91F
Z5nA47FVmWqrmzioVrsBnOTvze4XKhjrzfF2FvmM43sffw6boN/M11Nkez7qVZ/2
X0K4wy2ytxTL/wj1G2U76QTGgHt/EgNkVVGMs1tsbneTDn6/GZg=
=i9eY
-----END PGP SIGNATURE-----