← Back to branch summary

~ubuntu-branches/ubuntu/trusty/curl/trusty-updates

~ubuntu-branches/ubuntu/trusty/curl/trusty-updates

« back to all changes in this revision

Viewing changes to debian/changelog

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2015-01-14 08:49:32 UTC
Revision ID: package-import@ubuntu.com-20150114084932-4b8cpxuocqs2jv8h

Tags: 7.35.0-1ubuntu2.3

* SECURITY UPDATE: URL request injection
  - debian/patches/CVE-2014-8150.patch: drop bad chars from URL in
    lib/url.c, added test to tests/data/Makefile.am, tests/data/test1529,
    tests/libtest/Makefile.inc, tests/libtest/lib1529.c.
  - CVE-2014-8150

files added:
.pc/CVE-2014-8150.patch

.pc/CVE-2014-8150.patch/lib

.pc/CVE-2014-8150.patch/lib/url.c

.pc/CVE-2014-8150.patch/tests

.pc/CVE-2014-8150.patch/tests/data

.pc/CVE-2014-8150.patch/tests/data/Makefile.am

.pc/CVE-2014-8150.patch/tests/data/test1529

.pc/CVE-2014-8150.patch/tests/libtest

.pc/CVE-2014-8150.patch/tests/libtest/Makefile.inc

.pc/CVE-2014-8150.patch/tests/libtest/lib1529.c

debian/patches/CVE-2014-8150.patch

tests/data/test1529

tests/libtest/lib1529.c

files modified:
.pc/applied-patches

debian/changelog

debian/patches/series

lib/url.c

tests/data/Makefile.am

tests/libtest/Makefile.inc

Show diffs side-by-side

added added

removed removed

debian/changelog

1

curl (7.35.0-1ubuntu2.3) trusty-security; urgency=medium

2

3

* SECURITY UPDATE: URL request injection

4

- debian/patches/CVE-2014-8150.patch: drop bad chars from URL in

5

lib/url.c, added test to tests/data/Makefile.am, tests/data/test1529,

6

tests/libtest/Makefile.inc, tests/libtest/lib1529.c.

7

- CVE-2014-8150

8

9

-- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 14 Jan 2015 08:49:32 -0500

10

1

11

curl (7.35.0-1ubuntu2.2) trusty-security; urgency=medium

2

12

3

13

* SECURITY UPDATE: sensitive data disclosure via duphandle read out of

Older »