-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2009-03-02 11:22:54 UTC
-
Revision ID:
james.westby@ubuntu.com-20090302112254-l5pymps82xq2zos8
Tags: 7.18.2-1ubuntu4.1
* SECURITY UPDATE: Local file exposure via redirect
- debian/patches/security_CVE-2009-0037.patch: add logic to lib/url.c and
lib/urldata.h to limit what protocols curl will automatically follow via a
redirect. By default, it now follows all protocols except FILE and SCP.
- CVE-2009-0037