← Back to branch summary

~ubuntu-branches/ubuntu/trusty/curl/trusty-updates

« back to all changes in this revision

Viewing changes to debian/changelog

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2014-11-06 10:53:58 UTC
  • Revision ID: package-import@ubuntu.com-20141106105358-e90s20tv3eobuukd
Tags: 7.35.0-1ubuntu2.2
* SECURITY UPDATE: sensitive data disclosure via duphandle read out of
  bounds
  - debian/patches/CVE-2014-3707.patch: properly copy memory aread in
    lib/formdata.c, lib/strdup.{c,h}, lib/url.c, lib/urldata.h,
    src/Makefile.inc, src/tool_setup.h, src/tool_strdup.{c,h}.
  - CVE-2014-3707

Show diffs side-by-side

added added

removed removed

Lines of Context:
debian/changelog
 
1
curl (7.35.0-1ubuntu2.2) trusty-security; urgency=medium
 
2
 
 
3
  * SECURITY UPDATE: sensitive data disclosure via duphandle read out of
 
4
    bounds
 
5
    - debian/patches/CVE-2014-3707.patch: properly copy memory aread in
 
6
      lib/formdata.c, lib/strdup.{c,h}, lib/url.c, lib/urldata.h,
 
7
      src/Makefile.inc, src/tool_setup.h, src/tool_strdup.{c,h}.
 
8
    - CVE-2014-3707
 
9
 
 
10
 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Thu, 06 Nov 2014 10:53:58 -0500
 
11
 
1
12
curl (7.35.0-1ubuntu2.1) trusty-security; urgency=medium
2
13
 
3
14
  * SECURITY UPDATE: incorrect cookie handling via partial literal IP