Domenico Andreoli wrote: > long time ago the upstream developer informed me that the fix for > curl's CVE-2005-4077 now in sarge with 7.13.2-2sarge4 is not enough.
Ouch! > i finally came with a fixed curl 7.13.2-2sarge5 package. it is available > at http://people.debian.org/~cavok/curl/. Thanks a lot. Uploaded. I've also added the first part of the patch to the woody update. Could you tell us which version in sid corrects the correction? Regards, Joey -- Long noun chains don't automatically imply security. -- Bruce Schneier Please always Cc to me when replying to me on the lists. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
