-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 24 Jan 2012 15:14:25 +0100 Source: curl Binary: curl libcurl3 libcurl3-gnutls libcurl4-openssl-dev libcurl4-gnutls-dev libcurl3-dbg Architecture: kfreebsd-i386 Version: 7.21.0-2.1+squeeze1 Distribution: squeeze-security Urgency: high Maintainer: kfreebsd-i386 Build Daemon (finzi) Changed-By: Alessandro Ghedini Description: curl - Get a file from an HTTP, HTTPS or FTP server libcurl3 - Multi-protocol file transfer library (OpenSSL) libcurl3-dbg - libcurl compiled with debug symbols libcurl3-gnutls - Multi-protocol file transfer library (GnuTLS) libcurl4-gnutls-dev - Development files and documentation for libcurl (GnuTLS) libcurl4-openssl-dev - Development files and documentation for libcurl (OpenSSL) Changes: curl (7.21.0-2.1+squeeze1) stable-security; urgency=high . * Non-maintainer upload * Fix URL sanitization vulnerability as per CVE-2012-0036 http://curl.haxx.se/docs/adv_20120124.html * Fix SSL CBC IV vulnerability as per CVE-2011-3389 http://curl.haxx.se/docs/adv_20120124B.html * Set urgency=high accordingly Checksums-Sha1: 879746519728cdcd1d23728407f10fa4ed0daa54 226888 curl_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 27231ee7224d16c1d37af1a68d96b0cf0a9a4b27 280872 libcurl3_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 50ff8ddf653a46737b1411f8cf99b8e3f701072e 260776 libcurl3-gnutls_7.21.0-2.1+squeeze1_kfreebsd-i386.deb bcc6d47c8a7e0b868f07453db0e68361a8ff4fa2 1051238 libcurl4-openssl-dev_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 63483a60e81f52d595686d6dfb25397ec45dbfd5 1030856 libcurl4-gnutls-dev_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 452ed7d3a48ec51286abeb591e6eabf4cfa3eb68 111024 libcurl3-dbg_7.21.0-2.1+squeeze1_kfreebsd-i386.deb Checksums-Sha256: 3ab94fc561f11c1bf97f7b2a5148d7b53e18f91f6a893a2e3825c6c79f476426 226888 curl_7.21.0-2.1+squeeze1_kfreebsd-i386.deb a90043151a7e418d35cd475f3f77d1ab149a9b9ef84027263a3f49d82fd85bcb 280872 libcurl3_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 13222322703bfb3a3567c6cb476e9896486d7cc25147a74dcd50ea8a1cda0119 260776 libcurl3-gnutls_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 1bbffa493d598b4daaa85c9cc0405cdf850419743114d4222cbdbdfb88dd68f6 1051238 libcurl4-openssl-dev_7.21.0-2.1+squeeze1_kfreebsd-i386.deb ed4d6a0bc1a5734e82116eb52dd4f9d5635eccd7335510abda947ff128dcacbd 1030856 libcurl4-gnutls-dev_7.21.0-2.1+squeeze1_kfreebsd-i386.deb cc443986664dbd226e1035d2ecd8519771179e045e979897eae106441a29d229 111024 libcurl3-dbg_7.21.0-2.1+squeeze1_kfreebsd-i386.deb Files: 3641789ee62dfae848215ce55d3d2726 226888 web optional curl_7.21.0-2.1+squeeze1_kfreebsd-i386.deb d9e793debb7bed1a43bd940403b347aa 280872 libs optional libcurl3_7.21.0-2.1+squeeze1_kfreebsd-i386.deb ff80e0c7db4e94dc5f65dc35e2baa938 260776 libs optional libcurl3-gnutls_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 0add80c49f513d76c08e513b13665de8 1051238 libdevel optional libcurl4-openssl-dev_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 929c36c7565cacd00e70a78e229646c9 1030856 libdevel optional libcurl4-gnutls-dev_7.21.0-2.1+squeeze1_kfreebsd-i386.deb 9eaa53d885703684631513fedbc82f07 111024 debug extra libcurl3-dbg_7.21.0-2.1+squeeze1_kfreebsd-i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/kFreeBSD) iQIcBAEBAgAGBQJPJUvoAAoJEGTibMHYWaUAlX4QAIdQtb4C1+bbQwkLfJbtSDS1 PHBKy9fGi8pEdEiFm0Gqeaf074UDXrYUDnz09UatXdIh2Zr9qHsWy3v09ZLJV0fO JacLJ7s0mLI1ALUmLcoEwgSXddFO9l69PyAXHZGFkbbu+5QYYtbikXhjxQhRlcHR Hruka3QuTw+12Ce1+bsgJ7wnwRWBqo1+b46glmqs/ght3+reDbf7TQFhiedqs4o/ Hh9uRkYAWAYQYtSWdWdaLKhOCeVhRlm3IZ0s0KuxkWebib0WcS75EwCO5XmX8hJ/ 9prKQDRV9RXe5QMr1iQPEsapERZsgkFia0MQ1AgRAZ1jkZjMa59HC+DDjZvp72UQ DGAY/zlH9jC3QlJtBmSYU3X7ucoDlWoGNWA7fPhTrML1NEYaDM4B9OjQyH09uVyU i8luknE9k5IyTbNSAO2rOh5iiqH9WlI1iTU++4R/inq/OQMQEMpWdKQTiumxmHaW HotBoXZbx+FVqzpTRENT65sB6t+XDryDxsr5g9dKvP/JuL8OP2p8ixpSPCmUGGtZ Kmx8FpsDcRoeu52L5wynP39LvP/2EnZGw8zVGvB8rHrJRW2a2dORObLmhAP/AfqH 3uGXagjDoLUgQdjumP7Rbfcwh3sU0upVnAe+fbs2QGgaCFkFOry6qWmoZuPQCmGp KCuLQCYItlpRjomjts0g =tOoK -----END PGP SIGNATURE-----