CVS commit: pkgsrc/emulators/suse131_libcurl

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/emulators/suse131_libcurl
From: "OBATA Akio" <obache%netbsd.org@localhost>
Date: Thu, 18 Sep 2014 11:10:51 +0000

Module Name:    pkgsrc
Committed By:   obache
Date:           Thu Sep 18 11:10:51 UTC 2014

Modified Files:
        pkgsrc/emulators/suse131_libcurl: Makefile distinfo

Log Message:
security fix update for suse131_libcurl.

   openSUSE Security Update: curl
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2014:1139-1
Rating:             important
References:         #894575 #895991
Cross-References:   CVE-2014-3613 CVE-2014-3620
Affected Products:
                    openSUSE 13.1
                    openSUSE 12.3
______________________________________________________________________________

   An update that fixes two vulnerabilities is now available.

Description:

   libcurl was updated to fix security issues:

   CVE-2014-3613: Cookies for hosts specified by numeric IP could be assigned
   or used for other numeric IP hosts if portions of the numerics were the
   same.

   CVE-2014-3620: libcurl allowed cookies to be set for toplevel domains,
   making them to broad.


To generate a diff of this commit:
cvs rdiff -u -r1.5 -r1.6 pkgsrc/emulators/suse131_libcurl/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/emulators/suse131_libcurl/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index