[ubuntu/disco-security] curl 7.64.0-2ubuntu1.1 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Wed May 22 12:37:33 UTC 2019

curl (7.64.0-2ubuntu1.1) disco-security; urgency=medium

  * SECURITY UPDATE: Integer overflows in curl_url_set()
    - debian/patches/CVE-2019-5345.patch: limit sizes in lib/setopt.c,
      lib/urlapi.c, lib/urldata.h, tests/data/Makefile.inc,
      tests/data/test1559, tests/libtest/Makefile.inc,
    - CVE-2019-5345
  * SECURITY UPDATE: TFTP receive buffer overflow
    - debian/patches/CVE-2019-5346.patch: use the current blksize in
    - CVE-2019-5346

Date: 2019-05-16 14:48:13.564195+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Disco-changes mailing list