stable

curl-7.40.0-5.fc22

FEDORA-2015-10155 created by kdudka 10 years ago for Fedora 22
  • implement public key pinning for NSS backend (#1195771)
  • fix lingering HTTP credentials in connection re-use (CVE-2015-3236)
  • prevent SMB from sending off unrelated memory contents (CVE-2015-3237)
  • curl-config --libs now works on x86_64 without libcurl-devel.x86_64 (#1228363)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2015-10155

This update has been submitted for testing by kdudka.

10 years ago
User Icon taskotron commented 10 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/89348/steps/runtask/logs/stdio (results are informative only)

User Icon taskotron commented 10 years ago

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/89348/steps/runtask/logs/stdio (results are informative only)

User Icon dhgutteridge provided feedback 10 years ago
karma

This update is currently being pushed to the Fedora 22 testing updates repository.

10 years ago

This update has been pushed to testing

10 years ago
User Icon akurtakov commented & provided feedback 10 years ago
karma

works for me

Critical path update approved

10 years ago
User Icon kdudka commented 10 years ago

Thanks for the feedback!

This update has been submitted for stable by kdudka.

10 years ago
User Icon taskotron commented 10 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/100231/steps/runtask/logs/stdio (results are informative only)

User Icon taskotron commented 10 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/100232/steps/runtask/logs/stdio (results are informative only)

User Icon taskotron commented 10 years ago

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/100232/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

10 years ago

This update has been pushed to stable

10 years ago

Please log in to add feedback.

Metadata
Type
security
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
10 years ago
in testing
10 years ago
in stable
10 years ago
modified
10 years ago
Builds
1
curl-7.40.0-5.fc22
BZ#1195771 support "--pinnedpubkey" option (feature REQ)
0
0
BZ#1228363 curl-config broken when i686 version installed on x86_64
0
0
BZ#1233814 CVE-2015-3237 curl: SMB send off unrelated memory contents
0
0
BZ#1233816 CVE-2015-3236 curl: lingering HTTP credentials in connection re-use
0
0
BZ#1233818 CVE-2015-3237 CVE-2015-3236 curl: various flaws [fedora-all]
0
0
curl-7.40.0-5.fc22

Automated Test Results

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.2 on bodhi-web-13-89lkh.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy