Branches for Quantal

Name Status Last Modified Last Commit
lp:ubuntu/quantal/curl bug 2 Mature 2012-08-20 13:54:01 UTC 2012-08-20
62. * Resynchronise with Debian. Remaini...

Author: Colin Watson
Revision Date: 2012-08-20 13:54:01 UTC

* Resynchronise with Debian. Remaining changes:
  - Drop dependencies not in main:
    + Build-Depends: Drop stunnel4 and libssh2-1-dev.
    + Drop libssh2-1-dev from binary package Depends.
  - Add new libcurl3-udeb package.
  - Add new curl-udeb package.

lp:ubuntu/quantal-proposed/curl bug 2 Mature 2013-08-30 19:01:05 UTC 2013-08-30
66. Reset timecond when clearing session-...

Author: Dave Chiluk
Revision Date: 2013-08-23 14:58:40 UTC

Reset timecond when clearing session-info variables (LP: #1179781)
This fixes CURLINFO_CONDITION_UNMET incorrectly reporting "1"

lp:ubuntu/quantal-security/curl bug 2 Mature 2014-04-01 09:59:44 UTC 2014-04-01
70. * SECURITY UPDATE: wrong re-use of co...

Author: Marc Deslauriers
Revision Date: 2014-04-01 09:59:44 UTC

* SECURITY UPDATE: wrong re-use of connections
  - debian/patches/CVE-2014-0138.patch: fix possible issues with NTLM
    HTTP logic, and extend new connection logic to other protocols in
    lib/http.c, lib/url.c, lib/urldata.h, add new tests to
    tests/data/Makefile.am, tests/data/test1418, tests/data/test1419.
  - CVE-2014-0138
* SECURITY UPDATE: incorrect wildcard SSL certificate validation with
  literal IP addresses
  - debian/patches/CVE-2014-0139.patch: fix wildcard logic in
    lib/ssluse.c.
  - CVE-2014-0139
* debian/patches/fix_test172.path: fix expired cookie causing test to
  fail.
* debian/patches/disable_test519.path: disable test 519 as security
  update causes it to hang. Fixing this would require backporting new
  logic into tests/server/sws.c.

lp:ubuntu/quantal-updates/curl 2 Mature 2014-04-01 09:59:44 UTC 2014-04-01
70. * SECURITY UPDATE: wrong re-use of co...

Author: Marc Deslauriers
Revision Date: 2014-04-01 09:59:44 UTC

* SECURITY UPDATE: wrong re-use of connections
  - debian/patches/CVE-2014-0138.patch: fix possible issues with NTLM
    HTTP logic, and extend new connection logic to other protocols in
    lib/http.c, lib/url.c, lib/urldata.h, add new tests to
    tests/data/Makefile.am, tests/data/test1418, tests/data/test1419.
  - CVE-2014-0138
* SECURITY UPDATE: incorrect wildcard SSL certificate validation with
  literal IP addresses
  - debian/patches/CVE-2014-0139.patch: fix wildcard logic in
    lib/ssluse.c.
  - CVE-2014-0139
* debian/patches/fix_test172.path: fix expired cookie causing test to
  fail.
* debian/patches/disable_test519.path: disable test 519 as security
  update causes it to hang. Fixing this would require backporting new
  logic into tests/server/sws.c.

14 of 4 results