Debian Package Tracker

From: Chris Lamb <lamby@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted curl 7.38.0-4+deb8u12 (source amd64 all) into oldstable
Date: Sat, 08 Sep 2018 12:00:52 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 08 Sep 2018 11:55:45 +0100
Source: curl
Binary: curl libcurl3 libcurl3-gnutls libcurl3-nss libcurl4-openssl-dev libcurl4-gnutls-dev libcurl4-nss-dev libcurl3-dbg libcurl4-doc
Architecture: source amd64 all
Version: 7.38.0-4+deb8u12
Distribution: jessie-security
Urgency: high
Maintainer: Alessandro Ghedini <ghedo@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description:
 curl       - command line tool for transferring data with URL syntax
 libcurl3   - easy-to-use client-side URL transfer library (OpenSSL flavour)
 libcurl3-dbg - debugging symbols for libcurl (OpenSSL, GnuTLS and NSS flavours)
 libcurl3-gnutls - easy-to-use client-side URL transfer library (GnuTLS flavour)
 libcurl3-nss - easy-to-use client-side URL transfer library (NSS flavour)
 libcurl4-doc - documentation for libcurl
 libcurl4-gnutls-dev - development files and documentation for libcurl (GnuTLS flavour)
 libcurl4-nss-dev - development files and documentation for libcurl (NSS flavour)
 libcurl4-openssl-dev - development files and documentation for libcurl (OpenSSL flavour)
Changes:
 curl (7.38.0-4+deb8u12) jessie-security; urgency=high
 .
   * Fix an NTLM password overflow via integer overflow as per CVE-2018-14618
     https://curl.haxx.se/docs/CVE-2018-14618.html.
Checksums-Sha1:
 2c395ecace8a245f63f7e90caf3734711eba52ee 2673 curl_7.38.0-4+deb8u12.dsc
 40d8ec9063f076005535139c9229ac77c57f0300 4094034 curl_7.38.0.orig.tar.gz
 8323dae84a6a20e517418acfa9677a332dcb36bb 48108 curl_7.38.0-4+deb8u12.debian.tar.xz
 14ab9c52d746958443830828e3db6137bf377c67 200874 curl_7.38.0-4+deb8u12_amd64.deb
 d7dd6fdd62ac7d5a7645c7ba0bdd9d62c2729d61 260362 libcurl3_7.38.0-4+deb8u12_amd64.deb
 5d6ae8909e0f6969c3f052294dd27fbf43c5955a 252576 libcurl3-gnutls_7.38.0-4+deb8u12_amd64.deb
 7fc3de0e6a0fcbc14e8e0f71fa6991202bb9e81e 263620 libcurl3-nss_7.38.0-4+deb8u12_amd64.deb
 5a8d113a302b2c54bb9d7021e0883f19a8f8e88c 336578 libcurl4-openssl-dev_7.38.0-4+deb8u12_amd64.deb
 5133fb5c7fc34ae3c8ed3032df3c7256458aaf58 328494 libcurl4-gnutls-dev_7.38.0-4+deb8u12_amd64.deb
 d37a31a90463e645670b9334927780924028eaf9 340686 libcurl4-nss-dev_7.38.0-4+deb8u12_amd64.deb
 2f14e8f5e803c68494257f88c32ffe56683d2dbb 3371022 libcurl3-dbg_7.38.0-4+deb8u12_amd64.deb
 b16a70c50ad15d7e8d9908f238ce8adea1a6d2b5 1066966 libcurl4-doc_7.38.0-4+deb8u12_all.deb
Checksums-Sha256:
 80f22d569e3532d1235cd883e3916972356c26d5b530a464135a9a4ee544e262 2673 curl_7.38.0-4+deb8u12.dsc
 5661028aa6532882fa228cd23c99ddbb8b87643dbb1a7ea55c068d34a943dff1 4094034 curl_7.38.0.orig.tar.gz
 c64ecf02f9a9d493b85ee106da534d37ab284fd98010782fbaf2c2656958bd08 48108 curl_7.38.0-4+deb8u12.debian.tar.xz
 5adb5b518953c273f3f8be430b7764aad51ccbe0262db7673acd4a1760c27b98 200874 curl_7.38.0-4+deb8u12_amd64.deb
 44332fefe8504aa99671d626efe16672f3bf150e43f5dc4f286bd1362003cafa 260362 libcurl3_7.38.0-4+deb8u12_amd64.deb
 6c2a2f7aec717688a108d14257ed5dc223ea240103355892eafd85d8e13c92cb 252576 libcurl3-gnutls_7.38.0-4+deb8u12_amd64.deb
 3152e239329c1b964232ce4a21b44beebfb9d24cd1d813bce53b8c131c66c8ec 263620 libcurl3-nss_7.38.0-4+deb8u12_amd64.deb
 e568e467155997ea698447bcc52506ffaab500b386c91fab84232cd22c111878 336578 libcurl4-openssl-dev_7.38.0-4+deb8u12_amd64.deb
 480ba52caa176afa12f01d90a7d192fd2eab24eaedb476fe3dae74246c626655 328494 libcurl4-gnutls-dev_7.38.0-4+deb8u12_amd64.deb
 11136615090f6653c40df8d4ee319999ad88954210cb1ec36db7be0ec888f46d 340686 libcurl4-nss-dev_7.38.0-4+deb8u12_amd64.deb
 0abd5f38901e46634f89ae58068849dab9a9b595d78b56942e9f9632c6ecd38b 3371022 libcurl3-dbg_7.38.0-4+deb8u12_amd64.deb
 38263ffed802c9f7a4ad73d99dc3d7feda2af7e2c04584002fa5c315856d285d 1066966 libcurl4-doc_7.38.0-4+deb8u12_all.deb
Files:
 79da63add7aeb234794548c86172a1dc 2673 web optional curl_7.38.0-4+deb8u12.dsc
 b6e3ea55bb718f2270489581efa50a8a 4094034 web optional curl_7.38.0.orig.tar.gz
 4002f60efd3f540e486d37bf56282323 48108 web optional curl_7.38.0-4+deb8u12.debian.tar.xz
 d247ca8fb28be63f31aee41e2707c121 200874 web optional curl_7.38.0-4+deb8u12_amd64.deb
 b8350f4025b10a5dcdb981b876676370 260362 libs optional libcurl3_7.38.0-4+deb8u12_amd64.deb
 b0a2d86afae78cacaf6477331dc54bfb 252576 libs optional libcurl3-gnutls_7.38.0-4+deb8u12_amd64.deb
 33ae97377ad9187182a05ceedcaa421c 263620 libs optional libcurl3-nss_7.38.0-4+deb8u12_amd64.deb
 c68bf4f35556845728aa01bc7c89b5ea 336578 libdevel optional libcurl4-openssl-dev_7.38.0-4+deb8u12_amd64.deb
 d74e8d4c6bd30f693567cd8962504f9d 328494 libdevel optional libcurl4-gnutls-dev_7.38.0-4+deb8u12_amd64.deb
 99f72ef27306b9fe29be971b322cc43f 340686 libdevel optional libcurl4-nss-dev_7.38.0-4+deb8u12_amd64.deb
 92fe73232fb1da9a5500bd2cdd860ddd 3371022 debug extra libcurl3-dbg_7.38.0-4+deb8u12_amd64.deb
 c50fe07497ebf9ede1dc5c10001d8d96 1066966 doc optional libcurl4-doc_7.38.0-4+deb8u12_all.deb

-----BEGIN PGP SIGNATURE-----
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=Y+Km
-----END PGP SIGNATURE-----
News for package curl
