[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1498-1] curl security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : curl
Version        : 7.38.0-4+deb8u12
CVE IDs        : CVE-2018-14618 CVE-2018-14618

It was discovered that there was a an integer overflow vulnerability in
curl, a command line tool for transferring data over HTTP, etc.

For more information, please see:

  <https://curl.haxx.se/docs/CVE-2018-14618.html>

For Debian 8 "Jessie", this issue has been fixed in curl version
7.38.0-4+deb8u12.

We recommend that you upgrade your curl packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=TrJG
-----END PGP SIGNATURE-----


Reply to: