Bug number - 742728

Part of package: curl.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
Debian Bug report logs -  #742728 curl: CVE-2014-0138 CVE-2014-0139
Package:      curl; Maintainer for curl is Debian Curl Maintainers <team+curl@tracker.debian.org>; Source for curl is src:curl (PTS, buildd, popcon).
Reported by: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 26 Mar 2014 17:51:12 UTC
Severity: grave
Tags: fixed-upstream, security, upstream
Found in version curl/7.21.0-1
Fixed in versions curl/7.36.0-1, curl/7.26.0-1+wheezy9, curl/7.21.0-2.1+squeeze8
Done: Alessandro Ghedini <ghedo@debian.org>
Bug is archived. No further changes may be made.

All x-patch and x-diff attachments.

Patch	Author	Date
curl_7.21.0-2.1+squeeze8.diff	Alessandro Ghedini <ghedo@debian.org>	Thu, 10 Apr 2014 12:01:03 +0200
curl_7.26.0-1+wheezy9.diff	Alessandro Ghedini <ghedo@debian.org>	Thu, 10 Apr 2014 12:01:03 +0200

Original bug report here.