curl (7.19.7-1ubuntu1.11) lucid-security; urgency=medium * SECURITY UPDATE: URL request injection - debian/patches/CVE-2014-8150.patch: drop bad chars from URL in lib/url.c. - CVE-2014-8150 -- Marc Deslauriers <email address hidden> Wed, 14 Jan 2015 16:46:45 -0500