[ubuntu/hirsute-proposed] curl 7.74.0-1ubuntu1 (Accepted)

Fri Jan 15 14:42:11 UTC 2021

curl (7.74.0-1ubuntu1) hirsute; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - debian/control: build with libssh instead of libssh2

curl (7.74.0-1) unstable; urgency=medium

  * New upstream release
    + Fix inferior OCSP verification as per CVE-2020-8286 (Closes: #977161)
      https://curl.se/docs/CVE-2020-8286.html
    + Fix FTP wildcard stack overflow as per CVE-2020-8285 (Closes: #977162)
      https://curl.se/docs/CVE-2020-8285.html
    + Fix trusting FTP PASV responses as per CVE-2020-8284 (Closes: #977163)
      https://curl.se/docs/CVE-2020-8284.html
  * Update debian/watch to new upstream download page layout
  * Update 12_use-python3-in-tests.patch due to renamed file
  * Refresh patches
  * Fix cross-build due to python build dependencies.
    Thanks to Helmut Grohne for the patch (Closes: #969004)
  * Fix formatting in some man pages.
    Thanks to Bjarni Ingi Gislason for the patch (Closes: #963559)
  * Update list of documentation files to install
  * Update symbols
  * Bump Standards-Version to 4.5.1 (no changes needed)
  * Drop removed file from d/copyright

Date: Fri, 15 Jan 2021 08:05:59 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/curl/7.74.0-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 15 Jan 2021 08:05:59 -0500
Source: curl
Architecture: source
Version: 7.74.0-1ubuntu1
Distribution: hirsute
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Closes: 963559 969004 977161 977162 977163
Changes:
 curl (7.74.0-1ubuntu1) hirsute; urgency=medium
 .
   * Merge from Debian unstable. Remaining changes:
     - debian/control: build with libssh instead of libssh2
 .
 curl (7.74.0-1) unstable; urgency=medium
 .
   * New upstream release
     + Fix inferior OCSP verification as per CVE-2020-8286 (Closes: #977161)
       https://curl.se/docs/CVE-2020-8286.html
     + Fix FTP wildcard stack overflow as per CVE-2020-8285 (Closes: #977162)
       https://curl.se/docs/CVE-2020-8285.html
     + Fix trusting FTP PASV responses as per CVE-2020-8284 (Closes: #977163)
       https://curl.se/docs/CVE-2020-8284.html
   * Update debian/watch to new upstream download page layout
   * Update 12_use-python3-in-tests.patch due to renamed file
   * Refresh patches
   * Fix cross-build due to python build dependencies.
     Thanks to Helmut Grohne for the patch (Closes: #969004)
   * Fix formatting in some man pages.
     Thanks to Bjarni Ingi Gislason for the patch (Closes: #963559)
   * Update list of documentation files to install
   * Update symbols
   * Bump Standards-Version to 4.5.1 (no changes needed)
   * Drop removed file from d/copyright
Checksums-Sha1:
 241c225e70830746e941df0498424e6603f9011f 2765 curl_7.74.0-1ubuntu1.dsc
 cd7239cf9223b39ade86a14eb37fe68f5656eae9 4043409 curl_7.74.0.orig.tar.gz
 b7645a1795136bc414bb47f0a00743d6eaa8fbc8 32680 curl_7.74.0-1ubuntu1.debian.tar.xz
 53f22812e0f9d7628c0e5667b5cee9ab8b603aac 9975 curl_7.74.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
 aaab6d960947490e7de64018575f429bc1ca4a1ede3c0dd93c6f75d1eccf92e1 2765 curl_7.74.0-1ubuntu1.dsc
 e56b3921eeb7a2951959c02db0912b5fcd5fdba5aca071da819e1accf338bbd7 4043409 curl_7.74.0.orig.tar.gz
 db74c5714b613e4ea3a3c415b8c095b8b1823f25c081fca8a1da88775671c6cb 32680 curl_7.74.0-1ubuntu1.debian.tar.xz
 b13df47067ad54c0d87a139d2003a3eb6206e1b63b34277e528fed448e94ffce 9975 curl_7.74.0-1ubuntu1_source.buildinfo
Files:
 8f1c8940fe32ae1254de57234d7a42d8 2765 web optional curl_7.74.0-1ubuntu1.dsc
 45f468aa42c4af027c4c6ddba58267f0 4043409 web optional curl_7.74.0.orig.tar.gz
 ed5492d1d8e861ee1404514d87d57be5 32680 web optional curl_7.74.0-1ubuntu1.debian.tar.xz
 a1c5d046d9121565c77fe9894801595c 9975 web optional curl_7.74.0-1ubuntu1_source.buildinfo
Original-Maintainer: Alessandro Ghedini <ghedo at debian.org>

-----BEGIN PGP SIGNATURE-----
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=SnGF
-----END PGP SIGNATURE-----