Publishing details

• Removed from disk on 2016-11-03.
• Removal requested on 2016-11-03.
• Published on 2015-04-30
• Copied from ubuntu utopic in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot

Changelog

curl (7.37.1-1ubuntu3.4) utopic-security; urgency=medium

  * SECURITY UPDATE: NTLM connection reuse when unauthenticated
    - debian/patches/CVE-2015-3143.patch: require credentials to match in
      lib/url.c.
    - CVE-2015-3143
  * SECURITY UPDATE: host name out of boundary memory access
    - debian/patches/CVE-2015-3144.patch: check for valid length in
      lib/url.c.
    - CVE-2015-3144
  * SECURITY UPDATE: cookie parser out of boundary memory access
    - debian/patches/CVE-2015-3145.patch: properly handle a single double
      quote in lib/cookie.c.
    - CVE-2015-3145
  * SECURITY UPDATE: negotiate not treated as connection-oriented
    - debian/patches/CVE-2015-3148.patch: don't clear GSSAPI state between
      each exchange and close Negotiate connections when done in
      lib/http.c, lib/http_negotiate.c, lib/http_negotiate_sspi.c.
    - CVE-2015-3148
  * SECURITY UPDATE: sensitive HTTP server headers disclosure to proxies
    - debian/patches/CVE-2015-3153.patch: make HTTP headers separated in
      docs/libcurl/opts/CURLOPT_HEADEROPT.3, lib/url.c,
      tests/data/test1527, tests/data/test287, tests/libtest/lib1527.c.
    - CVE-2015-3153

 -- Marc Deslauriers <email address hidden>  Wed, 29 Apr 2015 10:23:26 -0400

Builds

• amd64
• arm64
• armhf
• i386
• powerpc
• ppc64el

Package files

• curl-udeb_7.37.1-1ubuntu3.4_amd64.udeb (1002 bytes)
• curl-udeb_7.37.1-1ubuntu3.4_arm64.udeb (1002 bytes)
• curl-udeb_7.37.1-1ubuntu3.4_armhf.udeb (1000 bytes)
• curl-udeb_7.37.1-1ubuntu3.4_i386.udeb (1002 bytes)
• curl-udeb_7.37.1-1ubuntu3.4_powerpc.udeb (1004 bytes)
• curl-udeb_7.37.1-1ubuntu3.4_ppc64el.udeb (1002 bytes)
• curl_7.37.1-1ubuntu3.4.debian.tar.xz (36.1 KiB)
• curl_7.37.1-1ubuntu3.4.dsc (2.8 KiB)
• curl_7.37.1-1ubuntu3.4_amd64.deb (122.9 KiB)
• curl_7.37.1-1ubuntu3.4_arm64.deb (118.4 KiB)
• curl_7.37.1-1ubuntu3.4_armhf.deb (118.5 KiB)
• curl_7.37.1-1ubuntu3.4_i386.deb (125.6 KiB)
• curl_7.37.1-1ubuntu3.4_powerpc.deb (119.5 KiB)
• curl_7.37.1-1ubuntu3.4_ppc64el.deb (121.7 KiB)
• curl_7.37.1.orig.tar.gz (3.9 MiB)
• libcurl3-dbg_7.37.1-1ubuntu3.4_amd64.deb (2.9 MiB)
• libcurl3-dbg_7.37.1-1ubuntu3.4_arm64.deb (3.2 MiB)
• libcurl3-dbg_7.37.1-1ubuntu3.4_armhf.deb (3.1 MiB)
• libcurl3-dbg_7.37.1-1ubuntu3.4_i386.deb (2.7 MiB)
• libcurl3-dbg_7.37.1-1ubuntu3.4_powerpc.deb (3.2 MiB)
• libcurl3-dbg_7.37.1-1ubuntu3.4_ppc64el.deb (3.4 MiB)
• libcurl3-gnutls_7.37.1-1ubuntu3.4_amd64.deb (167.6 KiB)
• libcurl3-gnutls_7.37.1-1ubuntu3.4_arm64.deb (138.4 KiB)
• libcurl3-gnutls_7.37.1-1ubuntu3.4_armhf.deb (146.5 KiB)
• libcurl3-gnutls_7.37.1-1ubuntu3.4_i386.deb (183.9 KiB)
• libcurl3-gnutls_7.37.1-1ubuntu3.4_powerpc.deb (151.9 KiB)
• libcurl3-gnutls_7.37.1-1ubuntu3.4_ppc64el.deb (167.2 KiB)
• libcurl3-nss_7.37.1-1ubuntu3.4_amd64.deb (178.0 KiB)
• libcurl3-nss_7.37.1-1ubuntu3.4_arm64.deb (148.9 KiB)
• libcurl3-nss_7.37.1-1ubuntu3.4_armhf.deb (155.8 KiB)
• libcurl3-nss_7.37.1-1ubuntu3.4_i386.deb (195.1 KiB)
• libcurl3-nss_7.37.1-1ubuntu3.4_powerpc.deb (161.6 KiB)
• libcurl3-nss_7.37.1-1ubuntu3.4_ppc64el.deb (178.6 KiB)
• libcurl3-udeb_7.37.1-1ubuntu3.4_amd64.udeb (888 bytes)
• libcurl3-udeb_7.37.1-1ubuntu3.4_arm64.udeb (886 bytes)
• libcurl3-udeb_7.37.1-1ubuntu3.4_armhf.udeb (886 bytes)
• libcurl3-udeb_7.37.1-1ubuntu3.4_i386.udeb (886 bytes)
• libcurl3-udeb_7.37.1-1ubuntu3.4_powerpc.udeb (888 bytes)
• libcurl3-udeb_7.37.1-1ubuntu3.4_ppc64el.udeb (886 bytes)
• libcurl3_7.37.1-1ubuntu3.4_amd64.deb (175.0 KiB)
• libcurl3_7.37.1-1ubuntu3.4_arm64.deb (144.8 KiB)
• libcurl3_7.37.1-1ubuntu3.4_armhf.deb (152.9 KiB)
• libcurl3_7.37.1-1ubuntu3.4_i386.deb (192.4 KiB)
• libcurl3_7.37.1-1ubuntu3.4_powerpc.deb (158.3 KiB)
• libcurl3_7.37.1-1ubuntu3.4_ppc64el.deb (173.6 KiB)
• libcurl4-doc_7.37.1-1ubuntu3.4_all.deb (970.5 KiB)
• libcurl4-gnutls-dev_7.37.1-1ubuntu3.4_amd64.deb (237.0 KiB)
• libcurl4-gnutls-dev_7.37.1-1ubuntu3.4_arm64.deb (212.0 KiB)
• libcurl4-gnutls-dev_7.37.1-1ubuntu3.4_armhf.deb (211.2 KiB)
• libcurl4-gnutls-dev_7.37.1-1ubuntu3.4_i386.deb (240.4 KiB)
• libcurl4-gnutls-dev_7.37.1-1ubuntu3.4_powerpc.deb (216.3 KiB)
• libcurl4-gnutls-dev_7.37.1-1ubuntu3.4_ppc64el.deb (246.3 KiB)
• libcurl4-nss-dev_7.37.1-1ubuntu3.4_amd64.deb (249.2 KiB)
• libcurl4-nss-dev_7.37.1-1ubuntu3.4_arm64.deb (223.5 KiB)
• libcurl4-nss-dev_7.37.1-1ubuntu3.4_armhf.deb (221.8 KiB)
• libcurl4-nss-dev_7.37.1-1ubuntu3.4_i386.deb (252.4 KiB)
• libcurl4-nss-dev_7.37.1-1ubuntu3.4_powerpc.deb (227.5 KiB)
• libcurl4-nss-dev_7.37.1-1ubuntu3.4_ppc64el.deb (260.3 KiB)
• libcurl4-openssl-dev_7.37.1-1ubuntu3.4_amd64.deb (245.3 KiB)
• libcurl4-openssl-dev_7.37.1-1ubuntu3.4_arm64.deb (219.1 KiB)
• libcurl4-openssl-dev_7.37.1-1ubuntu3.4_armhf.deb (218.6 KiB)
• libcurl4-openssl-dev_7.37.1-1ubuntu3.4_i386.deb (248.6 KiB)
• libcurl4-openssl-dev_7.37.1-1ubuntu3.4_powerpc.deb (223.2 KiB)
• libcurl4-openssl-dev_7.37.1-1ubuntu3.4_ppc64el.deb (253.4 KiB)