Debian Package Tracker

From: Chris Lamb <lamby@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted curl 7.26.0-1+wheezy21 (source amd64) into oldoldstable
Date: Thu, 05 Oct 2017 09:50:18 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 04 Oct 2017 22:11:40 +0100
Source: curl
Binary: curl libcurl3 libcurl3-gnutls libcurl3-nss libcurl4-openssl-dev libcurl4-gnutls-dev libcurl4-nss-dev libcurl3-dbg
Architecture: source amd64
Version: 7.26.0-1+wheezy21
Distribution: wheezy-security
Urgency: high
Maintainer: Alessandro Ghedini <ghedo@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description: 
 curl       - command line tool for transferring data with URL syntax
 libcurl3   - easy-to-use client-side URL transfer library (OpenSSL flavour)
 libcurl3-dbg - debugging symbols for libcurl (OpenSSL, GnuTLS and NSS flavours)
 libcurl3-gnutls - easy-to-use client-side URL transfer library (GnuTLS flavour)
 libcurl3-nss - easy-to-use client-side URL transfer library (NSS flavour)
 libcurl4-gnutls-dev - development files and documentation for libcurl (GnuTLS flavour)
 libcurl4-nss-dev - development files and documentation for libcurl (NSS flavour)
 libcurl4-openssl-dev - development files and documentation for libcurl (OpenSSL flavour)
Closes: 877671
Changes: 
 curl (7.26.0-1+wheezy21) wheezy-security; urgency=high
 .
   * CVE-2017-1000254: Prevent an out-of-bounds read in FTP "PWD" response
     parsing. A malicious server could abuse this effectively prevent curl
     based clients to interact with it. See
     <https://curl.haxx.se/docs/adv_20171004.html> for more details.
     (Closes: #877671)
Checksums-Sha1: 
 b73f33fa3e571bd8062df99837e9417d6b56992e 2534 curl_7.26.0-1+wheezy21.dsc
 66e1fd0312f62374b96fe02e644f66202fd6324b 3073624 curl_7.26.0.orig.tar.gz
 d8a192ae649987f10959437e48311531a6cc1bb4 67214 curl_7.26.0-1+wheezy21.debian.tar.gz
 6d07868c9d845c1091a228a71bdc963fa63bd0f5 273056 curl_7.26.0-1+wheezy21_amd64.deb
 bf5b0af000685c396c7ce0ff17b3381c5f6e922d 334752 libcurl3_7.26.0-1+wheezy21_amd64.deb
 d0081c2ffc103d36400bf9b1fe05f2f2bd552e48 325952 libcurl3-gnutls_7.26.0-1+wheezy21_amd64.deb
 1500995e4c1ea2e64015d08d63bf53cb9e2e334f 332492 libcurl3-nss_7.26.0-1+wheezy21_amd64.deb
 57ed0f997e5feda1643a6577757150c25084155e 1275840 libcurl4-openssl-dev_7.26.0-1+wheezy21_amd64.deb
 a7551bc47d1c60b89b873f5cb6fbc34cce8a84cf 1265310 libcurl4-gnutls-dev_7.26.0-1+wheezy21_amd64.deb
 798ebfc5dc146efd2563b92ae37c23c9969d814b 1272098 libcurl4-nss-dev_7.26.0-1+wheezy21_amd64.deb
 0729833b478d56f7076490d7bbe380dd965b3b93 3309814 libcurl3-dbg_7.26.0-1+wheezy21_amd64.deb
Checksums-Sha256: 
 c9bf81f58e3ba1df22d8d2efc7dde2faddde94fd5c367be97dc96927562f7a05 2534 curl_7.26.0-1+wheezy21.dsc
 79ccce9edb8aee17d20ad4d75e1f83a789f8c2e71e68f468e1bf8abf8933193f 3073624 curl_7.26.0.orig.tar.gz
 e853f350add9d4bc84b922861453f84c69cc5d6fc1768043523a48c191ee7ef6 67214 curl_7.26.0-1+wheezy21.debian.tar.gz
 acc25c7bd2fa32b0755bf05db53cb36623abf563454557b26cd17779d188ef48 273056 curl_7.26.0-1+wheezy21_amd64.deb
 fcfe4dd92190d3948dfeb21c5017f63af3b2970c4126b03dfe344dc78bbcd93a 334752 libcurl3_7.26.0-1+wheezy21_amd64.deb
 78c03ddf9dfdadc4c379410338ddf3b7c9408d34df591dd0b82f76e13e514778 325952 libcurl3-gnutls_7.26.0-1+wheezy21_amd64.deb
 bf2f44937b1fbee988d3e56e3ba037df82e11add82777a803df76ad3043d1e2d 332492 libcurl3-nss_7.26.0-1+wheezy21_amd64.deb
 bd521d96125624eb5b93c49a50b0b60431a9e4b0cfb276b74af2f7f0118bc9a7 1275840 libcurl4-openssl-dev_7.26.0-1+wheezy21_amd64.deb
 57170dca95a77d484603add7080c91c51ba827cfe9a9a26577c0b7edf66b7c18 1265310 libcurl4-gnutls-dev_7.26.0-1+wheezy21_amd64.deb
 05283ae43c687c3a31545ce81428fd9f11489775f5f50ac67b9845a8c7cf8dbf 1272098 libcurl4-nss-dev_7.26.0-1+wheezy21_amd64.deb
 ec5f086214653cc414dfe34b90a8d01f36b9866d71141fceca32f2840e86acef 3309814 libcurl3-dbg_7.26.0-1+wheezy21_amd64.deb
Files: 
 735faec6a14505b339b546fa28d4a0ce 2534 web optional curl_7.26.0-1+wheezy21.dsc
 3fa4d5236f2a36ca5c3af6715e837691 3073624 web optional curl_7.26.0.orig.tar.gz
 23e126876cde626c1e9ad4d98ed17d18 67214 web optional curl_7.26.0-1+wheezy21.debian.tar.gz
 ed1f9ffaf1f4f924d27a6900cd1791ce 273056 web optional curl_7.26.0-1+wheezy21_amd64.deb
 79b8e53b24eeb902d0a5e122122f35ca 334752 libs optional libcurl3_7.26.0-1+wheezy21_amd64.deb
 9c0927f9f233fcc94f5cfc1e4b844b64 325952 libs optional libcurl3-gnutls_7.26.0-1+wheezy21_amd64.deb
 86887b05ee65330789e9441f41dba16f 332492 libs optional libcurl3-nss_7.26.0-1+wheezy21_amd64.deb
 7ffa45eda04d16b87150f988ca8bc246 1275840 libdevel optional libcurl4-openssl-dev_7.26.0-1+wheezy21_amd64.deb
 21e617f58cfbbf0f89a6c2adbeab429c 1265310 libdevel optional libcurl4-gnutls-dev_7.26.0-1+wheezy21_amd64.deb
 3d8dbdc36e334e16ce259f7ab94893bb 1272098 libdevel optional libcurl4-nss-dev_7.26.0-1+wheezy21_amd64.deb
 816746b4b4d795dcd227104757c24266 3309814 debug extra libcurl3-dbg_7.26.0-1+wheezy21_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=qXAv
-----END PGP SIGNATURE-----
News for package curl
