-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Jan 2025 07:26:33 +0530
Source: puma
Binary: puma puma-dbgsym
Architecture: mipsel
Version: 5.6.5-3+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Abhijith PA <abhijith@debian.org>
Description:
 puma       - threaded HTTP 1.1 server for Ruby/Rack applications
Closes: 1050079 1060345 1082379
Changes:
 puma (5.6.5-3+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * d/patches/
    + CVE-2023-40175.patch: Fix CVE-2023-40175, incorrect behavior when
      parsing chunked transfer encoding bodies and zero-length
      Content-Length headers in a way that allowed HTTP request
      smuggling. (Closes: #1050079)
 .
    + CVE-2024-21647.patch: Fix CVE-2024-21647 by limiting the size of
      chunk extensions. (Closes: #1060345)
 .
    + CVE-2024-45614.patch: Fix CVE-2024-45614, clients could clobber
      values set by intermediate proxies (such as X-Forwarded-For) by
      providing a underscore version of the same header.
      (Closes: #1082379)
Checksums-Sha1:
 88c62837d9d86d6abbf39e04cbe8690fda4cc4dc 36840 puma-dbgsym_5.6.5-3+deb12u1_mipsel.deb
 b36acf1901a169a3f6f7d3d7fb6ab919cfee0a57 9652 puma_5.6.5-3+deb12u1_mipsel-buildd.buildinfo
 bdd32ab30923de6ccf69a03ce7343fd95403a4cd 154788 puma_5.6.5-3+deb12u1_mipsel.deb
Checksums-Sha256:
 0cf0278f191ca61dae12b9cc2a5c79d3be619aa0e4ff2c314e6ad7a2fa6b7e82 36840 puma-dbgsym_5.6.5-3+deb12u1_mipsel.deb
 a04572720a06486c70e6bc363baa71d30cc3dcb3eeb6ec7c76b6235145836dfe 9652 puma_5.6.5-3+deb12u1_mipsel-buildd.buildinfo
 018dc8db1afefcae43ecdf91e5401b0eb69b307fb2bdd98881d399f349f29576 154788 puma_5.6.5-3+deb12u1_mipsel.deb
Files:
 a1cd77248c610359a86d749fb7ad9050 36840 debug optional puma-dbgsym_5.6.5-3+deb12u1_mipsel.deb
 71743c2345594a19fb5ed4c31baec429 9652 web optional puma_5.6.5-3+deb12u1_mipsel-buildd.buildinfo
 c13a0fe5f142789b7108a6e7d2a48e14 154788 web optional puma_5.6.5-3+deb12u1_mipsel.deb

-----BEGIN PGP SIGNATURE-----
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=Owls
-----END PGP SIGNATURE-----