]> git.pld-linux.org Git - packages/curl.git/commit
projects / packages / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5edd466) | patch
- up to 7.51.0 auto/th/curl-7.51.0-1
authorArkadiusz Miśkiewicz <arekm@maven.pl>
Wed, 2 Nov 2016 10:44:05 +0000 (11:44 +0100)
committerArkadiusz Miśkiewicz <arekm@maven.pl>
Wed, 2 Nov 2016 10:44:05 +0000 (11:44 +0100)
commitf319ccdbd27a47ff92b91e3dcab04919a6cf0e58
treea0cb2982cb9216ca768df6db8a8705b999958d91tree | snapshot
parent5edd46668903b2f30d4ee28b8c2ffda13e8fde46commit | diff
- up to 7.51.0

Fixes:
CVE-2016-8615: cookie injection for other servers
CVE-2016-8616: case insensitive password comparison
CVE-2016-8617: OOB write via unchecked multiplication
CVE-2016-8618: double-free in curl_maprintf
CVE-2016-8619: double-free in krb5 code
CVE-2016-8620: glob parser write/read out of bounds
CVE-2016-8621: curl_getdate read out of bounds
CVE-2016-8622: URL unescape heap overflow via integer truncation
CVE-2016-8623: Use-after-free via shared cookies
CVE-2016-8624: invalid URL parsing with '#'
CVE-2016-8625: IDNA 2003 makes curl use wrong host
and few smaller issues.
curl.spec diff | blob | blame | history
A utility for getting files from remote servers (FTP, HTTP, and others)
This page took 0.160143 seconds and 4 git commands to generate.