stable

FEDORA-2014-16605 created by kdudka 7 years ago for Fedora 21
  • make CURLOPT_LOW_SPEED_LIMIT work again with threaded resolver (#1172572)
  • allow to use TLS 1.1 and TLS 1.2 (#1153814)
  • disable libcurl-level downgrade to SSLv3 (#1166567)
  • low-speed-limit: avoid timeout flood (#1166239)
  • fix handling of CURLOPT_COPYPOSTFIELDS in curl_easy_duphandle (CVE-2014-3707)

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2014-16605

This update has been submitted for testing by kdudka.

7 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/19746/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/19746/steps/runtask/logs/stdio (results are informative only)

karma

Critical path update approved

7 years ago

This update is currently being pushed to the Fedora 21 testing updates repository.

7 years ago

This update has been pushed to testing

7 years ago
User Icon pnemade commented & provided feedback 7 years ago
karma

Looks good

User Icon caxica commented & provided feedback 7 years ago
karma

Looks good to me

This update has reached the stable karma threshold and will be pushed to the stable updates repository

7 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/20932/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 stable updates repository.

7 years ago

Thanks for the feedback!

This update has been pushed to stable

7 years ago

Please login to add feedback.

Metadata
Type
security
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
BZ#1153814 yum cannot access repositories using TLS 1.2
0
0
BZ#1154941 CVE-2014-3707 curl: incorrect handle duplication after COPYPOSTFIELDS
0
0
BZ#1166239 Please include "low-speed-limit: avoid timeout flood" patch into fedora curl package
0
0
BZ#1166567 curl: Disable out-of-protocol fallback to SSL 3.0
0
0
BZ#1172572 XBMC issues due to Curl
0
0

Automated Test Results