Summary: | <net-misc/curl-7.24.0 : SSL/TLS IV Selection Weakness and URL Sanitisation Vulnerability (CVE-2011-3389,CVE-2012-0036) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | angelos, gentoo, vapier |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://secunia.com/advisories/47690/ | ||
Whiteboard: | A4 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 373235 |
Description
Agostino Sarubbo
2012-01-25 20:02:00 UTC
i've added 7.24.0 since there's a security issue ... hopefully Christoph doesn't mind Thanks Mike. @angelos, is it ready to stabilize? 26/073210 <@vapier> angelos: mind if i bump curl to 7.24.0 ? 26/073500 <@angelos> vapier: sure, go ahead 26/073803 -!- vapier [UserBah@nat/google/x-rsldjehppespqenp] has quit [Ping timeout: 272 seconds] guess you missed it anyway, good to go and thanks Mike Arches, please test and mark stable: =net-misc/curl-7.24.0 Target KEYWORDS: "alpha amd64 arm hppa ia64 ppc ppc64 s390 sh sparc x86" amd64 stable Stable for HPPA. x86 stable *** Bug 401655 has been marked as a duplicate of this bug. *** ppc done alpha/arm/ia64/s390/sh/sparc stable ppc64 done @security: please vote Thanks, folks. GLSA Vote: yes. Added to existing GLSA request. This issue was resolved and addressed in GLSA 201203-02 at http://security.gentoo.org/glsa/glsa-201203-02.xml by GLSA coordinator Sean Amoss (ackle). |