Publishing details
-
Published
-
Copied from
ubuntu lunar in
Private PPA for Ubuntu Security Team
Changelog
curl (7.88.1-8ubuntu2.3) lunar-security; urgency=medium
* SECURITY UPDATE: SOCKS5 heap buffer overflow
- debian/patches/CVE-2023-38545.patch: return error if hostname too
long for remote resolve in lib/socks.c, tests/data/Makefile.inc,
tests/data/test728.
- CVE-2023-38545
* SECURITY UPDATE: cookie injection with none file
- debian/patches/CVE-2023-38546.patch: remove unnecessary struct fields
in lib/cookie.c, lib/cookie.h, lib/easy.c.
- CVE-2023-38546
-- Marc Deslauriers <email address hidden> Tue, 03 Oct 2023 11:22:25 -0400
Builds
Package files