Debian Package Tracker

From: Chris Lamb <lamby@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted curl 7.26.0-1+wheezy25+deb7u1 (source amd64) into oldoldstable
Date: Wed, 16 May 2018 19:50:31 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 16 May 2018 19:54:32 +0200
Source: curl
Binary: curl libcurl3 libcurl3-gnutls libcurl3-nss libcurl4-openssl-dev libcurl4-gnutls-dev libcurl4-nss-dev libcurl3-dbg
Architecture: source amd64
Version: 7.26.0-1+wheezy25+deb7u1
Distribution: wheezy-security
Urgency: high
Maintainer: Alessandro Ghedini <ghedo@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description: 
 curl       - command line tool for transferring data with URL syntax
 libcurl3   - easy-to-use client-side URL transfer library (OpenSSL flavour)
 libcurl3-dbg - debugging symbols for libcurl (OpenSSL, GnuTLS and NSS flavours)
 libcurl3-gnutls - easy-to-use client-side URL transfer library (GnuTLS flavour)
 libcurl3-nss - easy-to-use client-side URL transfer library (NSS flavour)
 libcurl4-gnutls-dev - development files and documentation for libcurl (GnuTLS flavour)
 libcurl4-nss-dev - development files and documentation for libcurl (NSS flavour)
 libcurl4-openssl-dev - development files and documentation for libcurl (OpenSSL flavour)
Closes: 898856
Changes: 
 curl (7.26.0-1+wheezy25+deb7u1) wheezy-security; urgency=high
 .
   * CVE-2018-1000301: Prevent an issue where curl could have be tricked into
     reading data beyond the end of a heap based buffer used to store downloaded
     content. (Closes: #898856)
Checksums-Sha1: 
 e1503294208b4596a864f49a711d6ed0e1a8848d 2562 curl_7.26.0-1+wheezy25+deb7u1.dsc
 66e1fd0312f62374b96fe02e644f66202fd6324b 3073624 curl_7.26.0.orig.tar.gz
 8972b781e0f0cdfbd35ab85a948d23beaad5007f 74387 curl_7.26.0-1+wheezy25+deb7u1.debian.tar.gz
 7bae1ebdb6acd3002bc8690fbea200bf372a9fa4 273442 curl_7.26.0-1+wheezy25+deb7u1_amd64.deb
 f219f11d5495ebac9a7fdc747056b5316add6988 335258 libcurl3_7.26.0-1+wheezy25+deb7u1_amd64.deb
 031fd64ee9a8f470551d102eb8c66338196ba1af 326422 libcurl3-gnutls_7.26.0-1+wheezy25+deb7u1_amd64.deb
 8b98402d36538862513898c740a773f675e2a706 332912 libcurl3-nss_7.26.0-1+wheezy25+deb7u1_amd64.deb
 7a6da8a498b2cc68a30d620b1dc52e1f235cc014 1276218 libcurl4-openssl-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 2dfac00bd104cd043bb541a94cb0ad990ddba0b4 1265776 libcurl4-gnutls-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 6f6ecd60da5e91c2f5330a2929d967e6f30173f9 1272494 libcurl4-nss-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 6f445e5dfbb65da830e752cd45db9d56650adac2 3311234 libcurl3-dbg_7.26.0-1+wheezy25+deb7u1_amd64.deb
Checksums-Sha256: 
 cf96f8a0eb16b96e72c67fb5d198e8636dd0053aa7476d312dc300ed71e50210 2562 curl_7.26.0-1+wheezy25+deb7u1.dsc
 79ccce9edb8aee17d20ad4d75e1f83a789f8c2e71e68f468e1bf8abf8933193f 3073624 curl_7.26.0.orig.tar.gz
 263060d8592019c281cdbcd82cea0d0dc4c1abf0135c4cdc26ce10e5b8a69edd 74387 curl_7.26.0-1+wheezy25+deb7u1.debian.tar.gz
 9d0d587f3f253f37b63cb972567c02052fa0a080b991470d3028cad4e0a8da95 273442 curl_7.26.0-1+wheezy25+deb7u1_amd64.deb
 45f80975b9f995cb3b3b6c3bb041778cd441322474a70aaeab33c48bc8725794 335258 libcurl3_7.26.0-1+wheezy25+deb7u1_amd64.deb
 539680c86e0038a0c3ada1f6a4132afa69a80de81dd4e9d46be54c75cfc49d6c 326422 libcurl3-gnutls_7.26.0-1+wheezy25+deb7u1_amd64.deb
 dc15cceaefe4857fb9d72ac7b7835c7f72e42feb40b6bcd80467b007e18578e8 332912 libcurl3-nss_7.26.0-1+wheezy25+deb7u1_amd64.deb
 2828ee8eeb9d5d3e0aadc701f3527abd3a916b8ab70f6cf5571339dde290e3e6 1276218 libcurl4-openssl-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 5cc962f1dedc06dfe59a2e3a9df39f526ed9241ec29bd20b37b29b6f2574a830 1265776 libcurl4-gnutls-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 180f8704a333c12afec7a7fdb46eca0b7435e6434aceafa03dd8f205a5df1825 1272494 libcurl4-nss-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 ff5bb7e7337eacfb4c10dd951b0952f24b68e2670894d44c24ce809cb15d1cbc 3311234 libcurl3-dbg_7.26.0-1+wheezy25+deb7u1_amd64.deb
Files: 
 39ab313f15fe6cbb1c176c91fc4fa04f 2562 web optional curl_7.26.0-1+wheezy25+deb7u1.dsc
 3fa4d5236f2a36ca5c3af6715e837691 3073624 web optional curl_7.26.0.orig.tar.gz
 e8bb9c34cfbc97f61b61bd978c0000c4 74387 web optional curl_7.26.0-1+wheezy25+deb7u1.debian.tar.gz
 5ce20249e6d866458c2e4d78a2102efc 273442 web optional curl_7.26.0-1+wheezy25+deb7u1_amd64.deb
 f66a612b13b953472dff689efb584414 335258 libs optional libcurl3_7.26.0-1+wheezy25+deb7u1_amd64.deb
 8f47d959ff402d7d587584e9926ffc9b 326422 libs optional libcurl3-gnutls_7.26.0-1+wheezy25+deb7u1_amd64.deb
 bdd32f9f4685b3d8cba6689e1d9365c1 332912 libs optional libcurl3-nss_7.26.0-1+wheezy25+deb7u1_amd64.deb
 6b3cc5065b0744a289ba40034d6bccd6 1276218 libdevel optional libcurl4-openssl-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 4c92d7b8d489bab6f85ed513a7a4a8c4 1265776 libdevel optional libcurl4-gnutls-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 902de2cabf344ef311b52e389e866c82 1272494 libdevel optional libcurl4-nss-dev_7.26.0-1+wheezy25+deb7u1_amd64.deb
 25530b02102f6ed3f57bd702887f07fd 3311234 debug extra libcurl3-dbg_7.26.0-1+wheezy25+deb7u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=AFZ/
-----END PGP SIGNATURE-----
News for package curl
