News for package curl

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 3.0 (quilt)
Source: curl
Binary: curl, libcurl3, libcurl3-gnutls, libcurl3-nss, libcurl4-openssl-dev, libcurl4-gnutls-dev, libcurl4-nss-dev, libcurl3-dbg
Architecture: any
Version: 7.26.0-1+wheezy11
Maintainer: Alessandro Ghedini <[email protected]>
Uploaders: Ian Jackson <[email protected]>, Luk Claes <[email protected]>
Homepage: http://curl.haxx.se
Standards-Version: 3.9.3
Vcs-Browser: http://git.debian.org/?p=collab-maint/curl.git
Vcs-Git: git://git.debian.org/collab-maint/curl.git
Build-Depends: debhelper (>= 9), autoconf, automake1.9, groff-base, libgcrypt11-dev, libgnutls-dev, libidn11-dev, libkrb5-dev, libldap2-dev, libnss3-dev, librtmp-dev, libssh2-1-dev (>= 1.2), libssl-dev, libtool, openssh-server, quilt, stunnel4, zlib1g-dev
Build-Conflicts: autoconf2.13, automake1.4
Package-List: 
 curl deb web optional
 libcurl3 deb libs optional
 libcurl3-dbg deb debug extra
 libcurl3-gnutls deb libs optional
 libcurl3-nss deb libs optional
 libcurl4-gnutls-dev deb libdevel optional
 libcurl4-nss-dev deb libdevel optional
 libcurl4-openssl-dev deb libdevel optional
Checksums-Sha1: 
 66e1fd0312f62374b96fe02e644f66202fd6324b 3073624 curl_7.26.0.orig.tar.gz
 d22fb4e6f6121e3d7e1ece33219dc4a37f53a994 40585 curl_7.26.0-1+wheezy11.debian.tar.gz
Checksums-Sha256: 
 79ccce9edb8aee17d20ad4d75e1f83a789f8c2e71e68f468e1bf8abf8933193f 3073624 curl_7.26.0.orig.tar.gz
 360ca167f441e1655396a366cf22f0688c108725a666b68d92c2b0150a5b4c0b 40585 curl_7.26.0-1+wheezy11.debian.tar.gz
Files: 
 3fa4d5236f2a36ca5c3af6715e837691 3073624 curl_7.26.0.orig.tar.gz
 a543c19f1fabb6cab468e103cd7dc21f 40585 curl_7.26.0-1+wheezy11.debian.tar.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=zFQD
-----END PGP SIGNATURE-----

Changes:
curl (7.26.0-1+wheezy11) wheezy-security; urgency=high

  * Fix duphandle read out of bounds as per CVE-2014-3707
    http://curl.haxx.se/docs/adv_20141105.html
  * Set urgency=high accordingly

 -- Alessandro Ghedini <[email protected]>  Sun, 02 Nov 2014 16:07:47 +0100