[ubuntu/oneiric-security] curl 7.21.6-3ubuntu3.2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue Jan 24 21:03:19 UTC 2012
curl (7.21.6-3ubuntu3.2) oneiric-security; urgency=low
* SECURITY UPDATE: URL sanitization vulnerability
- debian/patches/CVE-2012-0036.patch: reject URLs with embedded control
codes in lib/{escape.h,escape.c,imap.c,pop3.c,smtp.c}.
- CVE-2012-0036
Date: Tue, 24 Jan 2012 08:27:30 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/curl/7.21.6-3ubuntu3.2
-------------- next part --------------
Format: 1.8
Date: Tue, 24 Jan 2012 08:27:30 -0500
Source: curl
Binary: curl libcurl3 libcurl3-udeb libcurl3-gnutls libcurl3-nss libcurl4-openssl-dev libcurl4-gnutls-dev libcurl4-nss-dev libcurl3-dbg
Architecture: source
Version: 7.21.6-3ubuntu3.2
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
curl - Get a file from an HTTP, HTTPS or FTP server
libcurl3 - Multi-protocol file transfer library (OpenSSL)
libcurl3-dbg - libcurl compiled with debug symbols
libcurl3-gnutls - Multi-protocol file transfer library (GnuTLS)
libcurl3-nss - Multi-protocol file transfer library (NSS)
libcurl3-udeb - Multi-protocol file transfer library (OpenSSL) (udeb)
libcurl4-gnutls-dev - Development files and documentation for libcurl (GnuTLS)
libcurl4-nss-dev - Development files and documentation for libcurl (NSS)
libcurl4-openssl-dev - Development files and documentation for libcurl (OpenSSL)
Changes:
curl (7.21.6-3ubuntu3.2) oneiric-security; urgency=low
.
* SECURITY UPDATE: URL sanitization vulnerability
- debian/patches/CVE-2012-0036.patch: reject URLs with embedded control
codes in lib/{escape.h,escape.c,imap.c,pop3.c,smtp.c}.
- CVE-2012-0036
Checksums-Sha1:
f516ad12c1c704efc024622d27971c2a48bd65c4 2271 curl_7.21.6-3ubuntu3.2.dsc
efb30b5bd1d42a5424fb100c4a6f31173005850f 99417 curl_7.21.6-3ubuntu3.2.debian.tar.gz
Checksums-Sha256:
4bee399386741e8490d854722437934de0d79244bf5d484995edfbb3feec3adb 2271 curl_7.21.6-3ubuntu3.2.dsc
9c76367f63bb4b44e8a82b812644adf48a31ff6d36d266409d2848ac48d9699d 99417 curl_7.21.6-3ubuntu3.2.debian.tar.gz
Files:
2159aecbbbf8dc61e051bb69c4aa66d3 2271 web optional curl_7.21.6-3ubuntu3.2.dsc
406b3bdf0dcde35e1f542267673f17eb 99417 web optional curl_7.21.6-3ubuntu3.2.debian.tar.gz
Original-Maintainer: Ramakrishnan Muthukrishnan <rkrishnan at debian.org>
More information about the Oneiric-changes
mailing list