[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1917-1] curl security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : curl
Version        : 7.38.0-4+deb8u16
CVE ID         : CVE-2019-5482
Debian Bug     : #940010

It was discovered that there was a heap buffer overflow vulnerability
in curl, the library and command-line tool for transferring data over
the internet.

For Debian 8 "Jessie", this issue has been fixed in curl version
7.38.0-4+deb8u16.

We recommend that you upgrade your curl packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAl16BEYACgkQHpU+J9Qx
HlhmBA/+M4k27kti4W4u1/hzqwPpo4xA0jkp2ad6KMD8Z0CcwdbilrXCnlvre7cz
QLQbJ3Py5o7tcw+dHLm866OyaYnR+ivaUqtF8sjV8p7DXAU/m/Zpbmr0mst031mR
ZnOWtuvJwRKE3yWpp1ySSlEKt2IOWonCkLoI9Md7kdo9LIY+EjO+GZjOoBtQpbFS
Z83uHeGWiIGT4ch1XI+3/9BfDX9uIc5AMR3l/Q1kx3b1SczWsBsi5a+3FbL3MalW
TQ5Nz8773+ite4ot4F9AUx16n8jN8Lpcy/K5/ausklVy8S5duv/t9kugjx9/pJ52
iI81NqQ0NP4bkykOnrDnHS16SRJ/PM9XjuuebuE647afugv4g+1hBwESK6B0Adh8
HF4eZ/I/eyIcLutY//sWFpTP8bsrSw9RsLud7lUwuI3527K6veNDbmyPa3KCek5V
zzzpVcnQLLOwAYEFdbBhYIy0ccrhVJrdxCZ8sywbHH+pjMt3VG5NVZwpXC05E1gr
6eXfdEi/nnRvwsOyHQo5kQMv2mCrQWyujhJpzWDPyJ1RxXJ2xyrgETxVDgnjK73A
VSnRPYrNQUELqgofaYGcGHQLv/aqUP0Vp293zoBA6uMvAIDORoWW3KfP/op3VBFi
95nnrbL+6iNbsdOxln3bqxlt6NrctP/Yc+ZAZJZWKbPx16qm28c=
=lIcc
-----END PGP SIGNATURE-----


Reply to: