Bug 175358
Summary: | CVE-2005-4077 not fixed by curl-7.13.1-4.fc4 | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Wilfried Weissmann <wilfried.weissmann> |
Component: | curl | Assignee: | Ivana Varekova <varekova> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 4 | CC: | bressers, daniel |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-12-12 14:32:58 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 175265 | ||
Bug Blocks: |
Description
Wilfried Weissmann
2005-12-09 13:05:52 UTC
... and please add the "Security Sensitive Bug" checkbox to the guided new bug dialog! Thank you very much for your bug report, you are absolutely right. This problem is fixed in curl-7.13.1-5.fc4 and curl-7.12.3-6.fc3 versions. It seems 7.14.0 and earlier needs this +3 version. I would *REALLY* appreciate if you could let me know the next time you find or get a security flaw reported here (me being curl and libcurl maintainer and developer). This additional info had not been identified before and it does affect a lot of more users than Redhat users. You clearly have known this for several days. Hello Daniel, I added you to curl bug list so you will get announcments about all curl bugs. If you does not want to be on this list, please write me a message. |