Publishing details

• Removed from disk on 2020-06-25.
• Removal requested on 2020-06-25.
• Superseded on 2020-06-24 by curl - 7.58.0-2ubuntu3.9
• Published on 2019-09-11
• Copied from ubuntu bionic in Private PPA for Ubuntu Security Team by Alex Murray

Changelog

curl (7.58.0-2ubuntu3.8) bionic-security; urgency=medium

  * SECURITY UPDATE: double-free when using kerberos over FTP may cause
    denial-of-service
    - debian/patches/CVE-2019-5481.patch: update lib/security.c to avoid
      double-free on large memory allocation failures
    - CVE-2019-5481
  * SECURITY UPDATE: heap buffer overflow when receiving TFTP data may
    cause denial-of-service or remote code-execution
    - debian/patches/CVE-2019-5482.patch: ensure to use the correct block
      size when calling recvfrom() if the server returns an OACK without
      specifying a block size in lib/tftp.c
    - CVE-2019-5482

 -- Alex Murray <email address hidden>  Fri, 06 Sep 2019 14:57:21 +0930

Builds

• amd64
• arm64
• armhf
• i386
• ppc64el
• s390x

Package files

• curl-dbgsym_7.58.0-2ubuntu3.8_amd64.ddeb (138.5 KiB)
• curl-dbgsym_7.58.0-2ubuntu3.8_arm64.ddeb (141.6 KiB)
• curl-dbgsym_7.58.0-2ubuntu3.8_armhf.ddeb (135.6 KiB)
• curl-dbgsym_7.58.0-2ubuntu3.8_i386.ddeb (124.9 KiB)
• curl-dbgsym_7.58.0-2ubuntu3.8_ppc64el.ddeb (143.8 KiB)
• curl-dbgsym_7.58.0-2ubuntu3.8_s390x.ddeb (146.9 KiB)
• curl_7.58.0-2ubuntu3.8.debian.tar.xz (39.2 KiB)
• curl_7.58.0-2ubuntu3.8.dsc (2.4 KiB)
• curl_7.58.0-2ubuntu3.8_amd64.deb (155.3 KiB)
• curl_7.58.0-2ubuntu3.8_arm64.deb (148.4 KiB)
• curl_7.58.0-2ubuntu3.8_armhf.deb (149.1 KiB)
• curl_7.58.0-2ubuntu3.8_i386.deb (158.3 KiB)
• curl_7.58.0-2ubuntu3.8_ppc64el.deb (154.6 KiB)
• curl_7.58.0-2ubuntu3.8_s390x.deb (151.6 KiB)
• curl_7.58.0.orig.tar.gz (3.7 MiB)
• libcurl3-gnutls-dbgsym_7.58.0-2ubuntu3.8_amd64.ddeb (1.2 MiB)
• libcurl3-gnutls-dbgsym_7.58.0-2ubuntu3.8_arm64.ddeb (1.3 MiB)
• libcurl3-gnutls-dbgsym_7.58.0-2ubuntu3.8_armhf.ddeb (1.2 MiB)
• libcurl3-gnutls-dbgsym_7.58.0-2ubuntu3.8_i386.ddeb (1.1 MiB)
• libcurl3-gnutls-dbgsym_7.58.0-2ubuntu3.8_ppc64el.ddeb (1.3 MiB)
• libcurl3-gnutls-dbgsym_7.58.0-2ubuntu3.8_s390x.ddeb (1.3 MiB)
• libcurl3-gnutls_7.58.0-2ubuntu3.8_amd64.deb (207.5 KiB)
• libcurl3-gnutls_7.58.0-2ubuntu3.8_arm64.deb (175.0 KiB)
• libcurl3-gnutls_7.58.0-2ubuntu3.8_armhf.deb (177.9 KiB)
• libcurl3-gnutls_7.58.0-2ubuntu3.8_i386.deb (230.5 KiB)
• libcurl3-gnutls_7.58.0-2ubuntu3.8_ppc64el.deb (212.3 KiB)
• libcurl3-gnutls_7.58.0-2ubuntu3.8_s390x.deb (190.3 KiB)
• libcurl3-nss-dbgsym_7.58.0-2ubuntu3.8_amd64.ddeb (1.2 MiB)
• libcurl3-nss-dbgsym_7.58.0-2ubuntu3.8_arm64.ddeb (1.3 MiB)
• libcurl3-nss-dbgsym_7.58.0-2ubuntu3.8_armhf.ddeb (1.2 MiB)
• libcurl3-nss-dbgsym_7.58.0-2ubuntu3.8_i386.ddeb (1.1 MiB)
• libcurl3-nss-dbgsym_7.58.0-2ubuntu3.8_ppc64el.ddeb (1.3 MiB)
• libcurl3-nss-dbgsym_7.58.0-2ubuntu3.8_s390x.ddeb (1.3 MiB)
• libcurl3-nss_7.58.0-2ubuntu3.8_amd64.deb (213.6 KiB)
• libcurl3-nss_7.58.0-2ubuntu3.8_arm64.deb (180.5 KiB)
• libcurl3-nss_7.58.0-2ubuntu3.8_armhf.deb (183.7 KiB)
• libcurl3-nss_7.58.0-2ubuntu3.8_i386.deb (236.4 KiB)
• libcurl3-nss_7.58.0-2ubuntu3.8_ppc64el.deb (219.9 KiB)
• libcurl3-nss_7.58.0-2ubuntu3.8_s390x.deb (196.7 KiB)
• libcurl4-dbgsym_7.58.0-2ubuntu3.8_amd64.ddeb (1.2 MiB)
• libcurl4-dbgsym_7.58.0-2ubuntu3.8_arm64.ddeb (1.3 MiB)
• libcurl4-dbgsym_7.58.0-2ubuntu3.8_armhf.ddeb (1.2 MiB)
• libcurl4-dbgsym_7.58.0-2ubuntu3.8_i386.ddeb (1.1 MiB)
• libcurl4-dbgsym_7.58.0-2ubuntu3.8_ppc64el.ddeb (1.3 MiB)
• libcurl4-dbgsym_7.58.0-2ubuntu3.8_s390x.ddeb (1.3 MiB)
• libcurl4-doc_7.58.0-2ubuntu3.8_all.deb (815.2 KiB)
• libcurl4-gnutls-dev_7.58.0-2ubuntu3.8_amd64.deb (286.7 KiB)
• libcurl4-gnutls-dev_7.58.0-2ubuntu3.8_arm64.deb (261.8 KiB)
• libcurl4-gnutls-dev_7.58.0-2ubuntu3.8_armhf.deb (263.2 KiB)
• libcurl4-gnutls-dev_7.58.0-2ubuntu3.8_i386.deb (318.9 KiB)
• libcurl4-gnutls-dev_7.58.0-2ubuntu3.8_ppc64el.deb (306.3 KiB)
• libcurl4-gnutls-dev_7.58.0-2ubuntu3.8_s390x.deb (273.7 KiB)
• libcurl4-nss-dev_7.58.0-2ubuntu3.8_amd64.deb (293.0 KiB)
• libcurl4-nss-dev_7.58.0-2ubuntu3.8_arm64.deb (268.1 KiB)
• libcurl4-nss-dev_7.58.0-2ubuntu3.8_armhf.deb (269.3 KiB)
• libcurl4-nss-dev_7.58.0-2ubuntu3.8_i386.deb (325.3 KiB)
• libcurl4-nss-dev_7.58.0-2ubuntu3.8_ppc64el.deb (314.3 KiB)
• libcurl4-nss-dev_7.58.0-2ubuntu3.8_s390x.deb (280.1 KiB)
• libcurl4-openssl-dev_7.58.0-2ubuntu3.8_amd64.deb (287.6 KiB)
• libcurl4-openssl-dev_7.58.0-2ubuntu3.8_arm64.deb (262.3 KiB)
• libcurl4-openssl-dev_7.58.0-2ubuntu3.8_armhf.deb (264.6 KiB)
• libcurl4-openssl-dev_7.58.0-2ubuntu3.8_i386.deb (320.8 KiB)
• libcurl4-openssl-dev_7.58.0-2ubuntu3.8_ppc64el.deb (303.5 KiB)
• libcurl4-openssl-dev_7.58.0-2ubuntu3.8_s390x.deb (274.3 KiB)
• libcurl4_7.58.0-2ubuntu3.8_amd64.deb (209.1 KiB)
• libcurl4_7.58.0-2ubuntu3.8_arm64.deb (175.8 KiB)
• libcurl4_7.58.0-2ubuntu3.8_armhf.deb (179.2 KiB)
• libcurl4_7.58.0-2ubuntu3.8_i386.deb (233.2 KiB)
• libcurl4_7.58.0-2ubuntu3.8_ppc64el.deb (211.8 KiB)
• libcurl4_7.58.0-2ubuntu3.8_s390x.deb (191.5 KiB)