Univention Bugzilla – Bug 38352
curl: Multiple issues (4.0)
Last modified: 2015-06-17 18:13:13 CEST
New issues fixed in 7.26.0-1+wheezy13: * Re-using authenticated connection when unauthenticated (CVE-2015-3143) * Negotiate not treated as connection-oriented (CVE-2015-3148)
Followup to Bug 36468
Tests (i386): OK Advisory: 2015-06-04-curl.yaml
OK: amd64 i386 OK: apt-cache policy curl OK: aptitude install '?source-package(^curl$)~i' OK: zless /usr/share/doc/curl/changelog.Debian.gz OK: curl -v http://docs.univention.de/ OK: curl -v https://www.univention.de/ OK: http_proxy=http://127.0.0.1:80 curl -v http://docs.univention.de/ OK: https_proxy=http://127.0.0.1:80 curl -v https://www.univention.de/ FIXED: 2015-06-04-curl.yaml → r61250 OK: CVE-2015-3143 CVE-2015-3148 OK: errata-announce -V 2015-06-04-curl.yaml
<http://errata.univention.de/ucs/4.0/213.html>