~ubuntu-branches/ubuntu/raring/curl/raring-security

Viewing all changes in revision 71.

browse files at revision 71
compare with another revision
download diff
download tarball
view history from revision 71

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2013-12-17 12:47:31 UTC
Revision ID: package-import@ubuntu.com-20131217124731-rbdsv38wf3s9sktb

Tags: 7.29.0-1ubuntu3.4

* SECURITY UPDATE: missing CN verification when signature verification is
  disabled in GnuTLS backend.
  - debian/patches/CVE-2013-6422.patch: still verify host when
    CURLOPT_SSL_VERIFYPEER isn't set in lib/gtls.c.
  - CVE-2013-6422

files added:
.pc/CVE-2013-6422.patch

.pc/CVE-2013-6422.patch/lib

.pc/CVE-2013-6422.patch/lib/gtls.c

debian/patches/CVE-2013-6422.patch

files modified:
.pc/applied-patches

debian/changelog

debian/patches/series

lib/gtls.c

expand all

Show diffs side-by-side

added added

removed removed

.pc/CVE-2013-6422.patch/

.pc/CVE-2013-6422.patch/lib/

.pc/CVE-2013-6422.patch/lib/gtls.c

.pc/applied-patches

debian/changelog

debian/patches/CVE-2013-6422.patch

debian/patches/series

lib/gtls.c

Older »