Format: 1.8
Date: Fri, 06 Sep 2019 15:00:31 +0930
Source: curl
Binary: curl libcurl3 libcurl3-gnutls libcurl3-nss libcurl4-openssl-dev libcurl4-gnutls-dev libcurl4-nss-dev libcurl3-dbg libcurl4-doc
Architecture: amd64 all
Version: 7.47.0-1ubuntu2.14
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-005.buildd>
Changed-By: Alex Murray <alex.murray@canonical.com>
Description:
 curl       - command line tool for transferring data with URL syntax
 libcurl3   - easy-to-use client-side URL transfer library (OpenSSL flavour)
 libcurl3-dbg - debugging symbols for libcurl (OpenSSL, GnuTLS and NSS flavours)
 libcurl3-gnutls - easy-to-use client-side URL transfer library (GnuTLS flavour)
 libcurl3-nss - easy-to-use client-side URL transfer library (NSS flavour)
 libcurl4-doc - documentation for libcurl
 libcurl4-gnutls-dev - development files and documentation for libcurl (GnuTLS flavour)
 libcurl4-nss-dev - development files and documentation for libcurl (NSS flavour)
 libcurl4-openssl-dev - development files and documentation for libcurl (OpenSSL flavour)
Changes:
 curl (7.47.0-1ubuntu2.14) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: double-free when using kerberos over FTP may cause
     denial-of-service
     - debian/patches/CVE-2019-5481.patch: update lib/security.c to avoid
       double-free on large memory allocation failures
     - CVE-2019-5481
   * SECURITY UPDATE: heap buffer overflow when receiving TFTP data may
     cause denial-of-service or remote code-execution
     - debian/patches/CVE-2019-5482.patch: ensure to use the correct block
       size when calling recvfrom() if the server returns an OACK without
       specifying a block size in lib/tftp.c
     - CVE-2019-5482
Checksums-Sha1:
 ff6281cae15f499cf7f9224e2ed8d8e79f07d8fd 1088 curl-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 65663ab3898fe94ac1e0fa1da89ffa06f0f9b224 138572 curl_7.47.0-1ubuntu2.14_amd64.deb
 2af966ebf730a7753fa9b67ff0df15f0fa04dd9f 3508164 libcurl3-dbg_7.47.0-1ubuntu2.14_amd64.deb
 c90a12cb6abeda1eb6d17fb4e7baa8719e5a2985 1206 libcurl3-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 43f0a18ba2331a6908486291a3af5b595ff13265 1208 libcurl3-gnutls-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 9747bc5ee5dc1fc0ccf271d74b4c5f337c789131 184236 libcurl3-gnutls_7.47.0-1ubuntu2.14_amd64.deb
 e49809fda4810850b819f890a4dde5aa139a2795 1208 libcurl3-nss-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 821a84dc84672d623e0bf3188ba48bfc62e60ead 190192 libcurl3-nss_7.47.0-1ubuntu2.14_amd64.deb
 ee81e977d09a27e1bff6f9fe6420a8a59137e70c 186066 libcurl3_7.47.0-1ubuntu2.14_amd64.deb
 bd968c5ffd8908a7d0868fc4f47088b7891aae2a 1157550 libcurl4-doc_7.47.0-1ubuntu2.14_all.deb
 6bb899a7472eff6e57ced2091831c1f0925122d5 1292 libcurl4-gnutls-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 42eebef2a9e92755f127d7f535b4a389a90751c2 260036 libcurl4-gnutls-dev_7.47.0-1ubuntu2.14_amd64.deb
 ed1b6132860d688c2b11175751b681e5e05fca3e 1288 libcurl4-nss-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 bc37b935fb4e2076a6abbef29306a967984b1411 266912 libcurl4-nss-dev_7.47.0-1ubuntu2.14_amd64.deb
 274d210b36f62ccc4e94451227dca3fc464145fc 1292 libcurl4-openssl-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 2f3a8494c886c52631b7643960118aedcf7c2110 262248 libcurl4-openssl-dev_7.47.0-1ubuntu2.14_amd64.deb
Checksums-Sha256:
 f25fbe773c478ec91b6535338e8425b113ab40ec2a47251d65b558ec18da2427 1088 curl-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 b2628802824fbc4e2150df6535eefae322f9d898ac1fc1c55696e832fd2d88d2 138572 curl_7.47.0-1ubuntu2.14_amd64.deb
 7901a9e4e02d3869c4362b871799ca26129fee1d14aa34df556e463921ad9597 3508164 libcurl3-dbg_7.47.0-1ubuntu2.14_amd64.deb
 700717191ade165970b262af61cac72188314161badf7b057bce144fbd1727fb 1206 libcurl3-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 16a298cbc7d95cd4723b14fae87da00a53abaa27cd5d823fb7bc753b9f2d3065 1208 libcurl3-gnutls-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 310f20d555c3a786496051b6b175090c976dc61b39b9792d58a44eed2c232d4f 184236 libcurl3-gnutls_7.47.0-1ubuntu2.14_amd64.deb
 2394aa051b20ef6b44f2bc82c246d133d06835a81fe1a3e4cfcfdc4d10e3489f 1208 libcurl3-nss-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 32afd1e298c313b4fe99044d345421234bdeff593a0e660bcc279b2fc066f68c 190192 libcurl3-nss_7.47.0-1ubuntu2.14_amd64.deb
 3f1e7502ac9e94eb00c98f21c028c8842f071a367f9a9f027f12c532dbfb9b01 186066 libcurl3_7.47.0-1ubuntu2.14_amd64.deb
 7ea41f246c2ed7edf77a5df1c0d4bd89d7b42877a80ffe0ade92179e3baa95e4 1157550 libcurl4-doc_7.47.0-1ubuntu2.14_all.deb
 0fbf7cc93b719e0c7a072935b4528a5f61e0add55cc2fe1082869c1f732dc198 1292 libcurl4-gnutls-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 ca9b218fdcf829b2333a4e3e3294e3e725ca08e2773f4ed6485171170260c716 260036 libcurl4-gnutls-dev_7.47.0-1ubuntu2.14_amd64.deb
 9a7c633596a391b9d0d12e50ce4d1d22008bb8a39d8718307c5fe087350df427 1288 libcurl4-nss-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 7bcb9ffe0cce55073567f4221ed36969abec3642a001befface16b0f2cf46764 266912 libcurl4-nss-dev_7.47.0-1ubuntu2.14_amd64.deb
 e0722bb6d82c2a67877de4be0186fcf87ad2ede8cba2f54860be8e890db50369 1292 libcurl4-openssl-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 f771d377261ced9fbdc43091bf376efc4cf6e6d614095ecc2f007f2a011b6880 262248 libcurl4-openssl-dev_7.47.0-1ubuntu2.14_amd64.deb
Files:
 92e620aa7a20b5ffe82661c1a021b918 1088 web extra curl-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 4def24fd89e0f4ac1e66bf876508fa01 138572 web optional curl_7.47.0-1ubuntu2.14_amd64.deb
 6a78df79e101666c75b675fa4aef1a35 3508164 debug extra libcurl3-dbg_7.47.0-1ubuntu2.14_amd64.deb
 2dc16a52e23ca03da2260c1eff2209ef 1206 libs extra libcurl3-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 bbad0a49c3dffd83dce815919d1ee8a1 1208 libs extra libcurl3-gnutls-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 d1000dc5d19bd5f7d6b77e0ac8716d97 184236 libs optional libcurl3-gnutls_7.47.0-1ubuntu2.14_amd64.deb
 fc9b3d928b865ca4637ab5eab1528728 1208 libs extra libcurl3-nss-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 7c9b0e401d973af0d2e253c56008d44f 190192 libs optional libcurl3-nss_7.47.0-1ubuntu2.14_amd64.deb
 22ebe0f789a1a195e54795e1631bb927 186066 libs optional libcurl3_7.47.0-1ubuntu2.14_amd64.deb
 1636ce002cbdd5ce68909552d8aa6d8c 1157550 doc optional libcurl4-doc_7.47.0-1ubuntu2.14_all.deb
 f1354c14ce734bd74ed983280d1971ca 1292 libdevel extra libcurl4-gnutls-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 092b0cd5cfae331012d84eb47df13ee2 260036 libdevel optional libcurl4-gnutls-dev_7.47.0-1ubuntu2.14_amd64.deb
 ff83a52bc29ee61903fb2305726cc723 1288 libdevel extra libcurl4-nss-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 920483c0d1e373771c204ff342357052 266912 libdevel optional libcurl4-nss-dev_7.47.0-1ubuntu2.14_amd64.deb
 ece918be1258b42ad5d2b4aee389c50c 1292 libdevel extra libcurl4-openssl-dev-dbgsym_7.47.0-1ubuntu2.14_amd64.ddeb
 9629d59fd82af9cbea2a2cf25d697403 262248 libdevel optional libcurl4-openssl-dev_7.47.0-1ubuntu2.14_amd64.deb
Original-Maintainer: Alessandro Ghedini <ghedo@debian.org>