* SQUID-2020-5 (CVE-2020-14059)
"Due to an Incorrect Synchronization, Squid is vulnerable to a
Denial of Service attack when processing objects in an SMP cache."
* SQUID-2020-6 (CVE-2020-14058)
"Due to use of a potentially dangerous function Squid and the
default certificate validation helper are vulnerable to a Denial
of Service attack when processing TLS certificates."
Please bump to 4.13.
Ebuild for 4.12 with the debug patch removed makes it compilable at least.
Let us know when ready to stable.
Unable to check for sanity:
> no match for package: =net-misc/squid-4.12
Acked on IRC
Maintainer(s), please cleanup.
Security, please vote.
GLSA vote: no.