-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 24 Jan 2012 15:14:25 +0100 Source: curl Binary: curl libcurl3 libcurl3-gnutls libcurl4-openssl-dev libcurl4-gnutls-dev libcurl3-dbg Architecture: kfreebsd-amd64 Version: 7.21.0-2.1+squeeze1 Distribution: squeeze-security Urgency: high Maintainer: kfreebsd-amd64 Build Daemon (fasch) Changed-By: Alessandro Ghedini Description: curl - Get a file from an HTTP, HTTPS or FTP server libcurl3 - Multi-protocol file transfer library (OpenSSL) libcurl3-dbg - libcurl compiled with debug symbols libcurl3-gnutls - Multi-protocol file transfer library (GnuTLS) libcurl4-gnutls-dev - Development files and documentation for libcurl (GnuTLS) libcurl4-openssl-dev - Development files and documentation for libcurl (OpenSSL) Changes: curl (7.21.0-2.1+squeeze1) stable-security; urgency=high . * Non-maintainer upload * Fix URL sanitization vulnerability as per CVE-2012-0036 http://curl.haxx.se/docs/adv_20120124.html * Fix SSL CBC IV vulnerability as per CVE-2011-3389 http://curl.haxx.se/docs/adv_20120124B.html * Set urgency=high accordingly Checksums-Sha1: 201a63713f6f9f0d7f24b74b1073cdbc3ae8b4a5 228498 curl_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb f6fbe9d368d8b711f8618dc09ab3ff5913d06d55 285106 libcurl3_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb bbff9a20a831a91359c2bfc8ebac037107098123 265584 libcurl3-gnutls_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 08ae854ccc1793067b0cbaa72c8554d15def4b94 1075104 libcurl4-openssl-dev_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb a9cededfb788baf1a4bfc4604f004da0331ee1f3 1052682 libcurl4-gnutls-dev_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 423622e5cb9422ad30e13556fdaad559ec1c5580 105890 libcurl3-dbg_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb Checksums-Sha256: 28b3b431f15bcd391baecb4f0c7da0c14e846f4ae7a233aefc3c78594de24ada 228498 curl_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 64af76532b65218a1fefa4caf1d5526c213ff832e0a572d2379c8bf555f97a07 285106 libcurl3_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 6d3910066c25f53e838597082768118edd17dffcb140bc0633efe25b7b5c4c8a 265584 libcurl3-gnutls_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 71b450aaad1594a28ac70307966a1a8dd729599c048d83b57d84d6a0f9b2b36f 1075104 libcurl4-openssl-dev_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 213c3514aaf315e5e3e1e40965d66b2bd2d0ad916bc9746cf10a913b7eeda064 1052682 libcurl4-gnutls-dev_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb aacbb117cd8a4eb1563d5394f8bf00e71a9d110758998b04312c4855d7ee1d4a 105890 libcurl3-dbg_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb Files: 4c72beb1b13faba27180754e10b9f134 228498 web optional curl_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 38e8574962a62731a50c90fdafc4d170 285106 libs optional libcurl3_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb da3f81f6e5319c60ce40969bd744d5c6 265584 libs optional libcurl3-gnutls_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb d202595b2ae73a2207fff565ea828ded 1075104 libdevel optional libcurl4-openssl-dev_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 6dbd5f8b3a279966c02c2b57e66115c9 1052682 libdevel optional libcurl4-gnutls-dev_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb 405f877f9394ca51408517c42145c290 105890 debug extra libcurl3-dbg_7.21.0-2.1+squeeze1_kfreebsd-amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/kFreeBSD) iQIcBAEBAgAGBQJPJZU4AAoJELV0nKsIaKwSu+cQAJGh8he1lKEDdk8bvAVv744y eGaZfDWqGwxcV1kmSG51ZCqi3fY6H94iTjNaCLshnFlpO4Fr5bJBwOPJE67Cvnac VCrt5hyXFBWYZprSt8yWfWeCqrv2uPn6708oW3k1kURECBVAkFiH5cEhAcTQzj1s sFEd2iP237tx5Dv/jOQSxBBKh2lYbjUAoW7uVfxqTDBW9tG3r1p6hJrTLdRkzPx+ eW2w8H9UdUvAgbolqnWYfqcq62c+A3P5GtHMr/TCCz73m/VXQxD6HdbOcQ2WJUQk 1W092L1xWbUXH9ndUdDa8a3yuBJ/Ci5OW6kHGXKpJk/nEzJsn40avuDSYcZixKcp dFl7wZzKijjg/OSIsuCXAT/kn+5yhMvXXqllg5zNsHUgqP85q0ReQXAalnNcd489 vok0WENA63s5vbuW0f7Slnsc8t3rYfZvoh/SPbg6v2/7vsVNW5Cya0VnhOYLixIU ux5SOtAu/C1U18lmkQ4bVf4/npyg+XIikUcNBSuGguylp7vD/YRBMnz0EOy1SkQ/ R5b5G9wMcphrenhvx6d/4t6es35NsYT700BRockG2i8s4eL5STL4gsK8oHS5UlCL sruqETbvcqBXdrXL6MhbSdbEvxEBo4SSB3NgT16ffu0WkQqFiHl3sWkkNoGTiAXq igt1UcRXMSN6wXFG2XaO =ae1S -----END PGP SIGNATURE-----