-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 3.0 (quilt) Source: curl Binary: curl, libcurl3, libcurl3-gnutls, libcurl3-nss, libcurl4-openssl-dev, libcurl4-gnutls-dev, libcurl4-nss-dev, libcurl3-dbg Architecture: any Version: 7.26.0-1+wheezy12 Maintainer: Alessandro Ghedini <[email protected]> Uploaders: Ian Jackson <[email protected]>, Luk Claes <[email protected]> Homepage: http://curl.haxx.se Standards-Version: 3.9.3 Vcs-Browser: http://git.debian.org/?p=collab-maint/curl.git Vcs-Git: git://git.debian.org/collab-maint/curl.git Build-Depends: debhelper (>= 9), autoconf, automake1.9, groff-base, libgcrypt11-dev, libgnutls-dev, libidn11-dev, libkrb5-dev, libldap2-dev, libnss3-dev, librtmp-dev, libssh2-1-dev (>= 1.2), libssl-dev, libtool, openssh-server, quilt, stunnel4, zlib1g-dev Build-Conflicts: autoconf2.13, automake1.4 Package-List: curl deb web optional libcurl3 deb libs optional libcurl3-dbg deb debug extra libcurl3-gnutls deb libs optional libcurl3-nss deb libs optional libcurl4-gnutls-dev deb libdevel optional libcurl4-nss-dev deb libdevel optional libcurl4-openssl-dev deb libdevel optional Checksums-Sha1: 66e1fd0312f62374b96fe02e644f66202fd6324b 3073624 curl_7.26.0.orig.tar.gz 1dc4144c07916f9344872d5f331f9d6c44e30898 41033 curl_7.26.0-1+wheezy12.debian.tar.gz Checksums-Sha256: 79ccce9edb8aee17d20ad4d75e1f83a789f8c2e71e68f468e1bf8abf8933193f 3073624 curl_7.26.0.orig.tar.gz d0de143816d58e287e23d6b760ed8986335ea184027e28be60bc5ac834ae8b0f 41033 curl_7.26.0-1+wheezy12.debian.tar.gz Files: 3fa4d5236f2a36ca5c3af6715e837691 3073624 curl_7.26.0.orig.tar.gz 0526db41a71e515af78641da4aa5cf19 41033 curl_7.26.0-1+wheezy12.debian.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJUoqfKAAoJEK+lG9bN5XPLfToP/j7ahiWkKA9iI7VPs2UO1RLz Llu1GQ4LOwWbopAIUEUdNhU0zSKq5q4Rpbi4+lGLjkh7N26p87wDVamfvPiTLRBP wgq+Dk4q6EgPabN/J4kxkP3xDmWoidiFUVDKMwxd4SLIRc7PHBA1j/WZpISojnVS oqslv4N9c1pr3ql9lmHCXNE0Wb4jZIelteyt5vqQ1r8y+1F+JyCULeankZFtBw52 O9EeAudkUGFK5e9rSB3DPYedOb4bJpBw4J8ULrJKGQTPMiEnZhU9xju5w+B8RG/B Y2a+XlJv7Jz0FHxVY8NMO20fsJKY8iSBG4fJ7/FMCnM4EaBBL1kshvDHAiqNIBjz 3fF7ovjtkHlkTEqE81bhZ0Us2nN2Saq7SC2GjLd8N5nw04+8jVErIn4fIvUDmX4w dwBkLpTsvm6XwFriqkVK/tqy7wY/55hL84iBiSitwj4Hz7cUHHvDQFIYtttYceq9 Ok4rd/K9x6Dd+O/UBYkgvZ9qnPhmmrSetCHpXinOakdOaW0GwJtkSajkUBN6jlf2 7U5lUYTa2lExBwyDajffuHLaee2Z8Lm5b9QabQB+RuFIUNSWSdnKzOlRMz12Xy8K vaXSVv5G4VXIahBZO9Agwh6xMVLUT1iwYcKxC66iSbbomKuI6SrRxopOA9sM0i89 Lzh0q5j1wVhj40uMLXyp =hHQF -----END PGP SIGNATURE----- Changes: curl (7.26.0-1+wheezy12) wheezy-security; urgency=high * Fix URL request injection vulnerability as per CVE-2014-8150 http://curl.haxx.se/docs/adv_20150108B.html * Set urgency=high accordingly -- Alessandro Ghedini <[email protected]> Tue, 30 Dec 2014 11:58:52 +0100
