curl_7.35.0-1ubuntu2.20_i386.deb


Advertisement

Description

curl - command line tool for transferring data with URL syntax

Property Value
Distribution Ubuntu 14.04 LTS (Trusty Tahr)
Repository Ubuntu Updates Main i386
Package filename curl_7.35.0-1ubuntu2.20_i386.deb
Package name curl
Package version 7.35.0
Package release 1ubuntu2.20
Package architecture i386
Package type deb
Category web
Homepage http://curl.haxx.se
License -
Maintainer Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Download size 119.77 KB
Installed size 304.00 KB
curl is a command line tool for transferring data with URL syntax, supporting
DICT, FILE, FTP, FTPS, GOPHER, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, POP3,
POP3S, RTMP, RTSP, SCP, SFTP, SMTP, SMTPS, TELNET and TFTP.
curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form
based upload, proxies, cookies, user+password authentication (Basic, Digest,
NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a
busload of other useful tricks.

Alternatives

Package Version Architecture Repository
curl_7.35.0-1ubuntu2.20_amd64.deb 7.35.0 amd64 Ubuntu Updates Main
curl_7.35.0-1ubuntu2_amd64.deb 7.35.0 amd64 Ubuntu Main
curl_7.35.0-1ubuntu2_i386.deb 7.35.0 i386 Ubuntu Main
curl - - -

Requires

Name Value
libc6 >= 2.17
libcurl3 = 7.35.0-1ubuntu2.20
zlib1g >= 1:1.1.4

Download

Type URL
Mirror archive.ubuntu.com
Binary Package curl_7.35.0-1ubuntu2.20_i386.deb
Source Package curl

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install curl deb package:
    # sudo apt-get install curl

Files

Path
/usr/bin/curl
/usr/share/doc/curl/NEWS.Debian.gz
/usr/share/doc/curl/changelog.Debian.gz
/usr/share/doc/curl/copyright
/usr/share/man/man1/curl.1.gz

Changelog

2019-01-29 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
curl (7.35.0-1ubuntu2.20) trusty-security; urgency=medium
* SECURITY UPDATE: SMTP end-of-response out-of-bounds read
- debian/patches/CVE-2019-3823.patch: avoid risk of buffer overflow in
strtol in lib/smtp.c.
- CVE-2019-3823
2018-10-29 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
curl (7.35.0-1ubuntu2.19) trusty-security; urgency=medium
* SECURITY UPDATE: SASL password overflow via integer overflow
- debian/patches/CVE-2018-16839-pre1.patch: prevent size overflows in
lib/curl_sasl.c.
- debian/patches/CVE-2018-16839-pre2.patch: fix integer overflow check
in lib/curl_ntlm_core.c, lib/curl_setup.h, lib/curl_sasl.c.
- debian/patches/CVE-2018-16839.patch: fix check in lib/curl_sasl.c.
- CVE-2018-16839
* SECURITY UPDATE: warning message out-of-buffer read
- debian/patches/oob-read.patch: fix bad arithmetic in src/tool_msgs.c.
- CVE number pending
2018-09-12 - Leonidas S. Barbosa <leo.barbosa@canonical.com>
curl (7.35.0-1ubuntu2.17) trusty-security; urgency=medium
* SECURITY UPDATE: Buffer overrun
- debian/patches/CVE-2018-14618.patch: fix in
lib/curl_ntlm_core.c.
- CVE-2018-14618
2018-05-08 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
curl (7.35.0-1ubuntu2.16) trusty-security; urgency=medium
* SECURITY UPDATE: RTSP bad headers buffer over-read
- debian/patches/CVE-2018-1000301.patch: restore buffer pointer when
bad response-line is parsed in lib/http.c.
- CVE-2018-1000301
2018-03-14 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
curl (7.35.0-1ubuntu2.15) trusty-security; urgency=medium
* SECURITY UPDATE: FTP path trickery leads to NIL byte OOB write
- debian/patches/CVE-2018-1000120-pre1.patch: avoid using
curl_easy_unescape() internally in lib/ftp.c.
- debian/patches/CVE-2018-1000120-pre2.patch: URL decode path for dir
listing in nocwd mode in lib/ftp.c, add test to tests/*.
- debian/patches/CVE-2018-1000120-pre3.patch: remove dead code in
ftp_done in lib/ftp.c.
- debian/patches/CVE-2018-1000120-pre4.patch: don't clobber the passed
in error code in lib/ftp.c.
- debian/patches/CVE-2018-1000120.patch: reject path components with
control codes in lib/ftp.c, add test to tests/*.
- CVE-2018-1000120
* SECURITY UPDATE: LDAP NULL pointer dereference
- debian/patches/CVE-2018-1000121.patch: check ldap_get_attribute_ber()
results for NULL before using in lib/openldap.c.
- CVE-2018-1000121
* SECURITY UPDATE: RTSP RTP buffer over-read
- debian/patches/CVE-2018-1000122.patch: make sure excess reads don't
go beyond buffer end in lib/transfer.c.
- CVE-2018-1000122
2018-01-29 - Leonidas S. Barbosa <leo.barbosa@canonical.com>
curl (7.35.0-1ubuntu2.14) trusty-security; urgency=medium
* SECURITY UPDATE: leak authentication data
- debian/patches/CVE-2018-1000007.patch: prevent custom
authorization headers in redirects in lib/http.c,
lib/url.c, lib/urldata.h, tests/data/Makefile.in,
tests/data/test317, tests/data/test318.
- CVE-2018-1000007
2017-11-28 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
curl (7.35.0-1ubuntu2.13) trusty-security; urgency=medium
* SECURITY UPDATE: FTP wildcard out of bounds read
- debian/patches/CVE-2017-8817.patch: fix heap buffer overflow in
setcharset in lib/curl_fnmatch.c, added tests to
tests/data/Makefile.am, tests/data/test1163.
- CVE-2017-8817
2017-10-17 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
curl (7.35.0-1ubuntu2.12) trusty-security; urgency=medium
* SECURITY UPDATE: IMAP FETCH response out of bounds read
- debian/patches/CVE-2017-1000257.patch: check size in lib/imap.c.
- CVE-2017-1000257

See Also

Package Description
curtin-common_0.1.0~bzr399-0ubuntu1~14.04.1_all.deb Library and tools for curtin installer
cvs_1.12.13+real-12ubuntu0.1_i386.deb Concurrent Versions System
cvsps_2.1-6ubuntu0.14.04.1_i386.deb Tool to generate CVS patch set information
db5.3-doc_5.3.28-3ubuntu3.1_all.deb Berkeley v5.3 Database Documentation [html]
db5.3-util_5.3.28-3ubuntu3.1_i386.deb Berkeley v5.3 Database Utilities
dbus-1-doc_1.6.18-0ubuntu4.5_all.deb simple interprocess messaging system (documentation)
dbus-x11_1.6.18-0ubuntu4.5_i386.deb simple interprocess messaging system (X11 deps)
dbus_1.6.18-0ubuntu4.5_i386.deb simple interprocess messaging system (daemon and utilities)
debian-goodies_0.63ubuntu1_all.deb Small toolbox-style utilities for Debian systems
debian-installer_20101020ubuntu318.46_i386.deb Debian installer
debootstrap_1.0.59ubuntu0.12_all.deb Bootstrap a basic Debian system
debugedit_4.11.1-3ubuntu0.1_i386.deb tool to mangle source locations in .debug files
deja-dup-backend-gvfs_30.0-0ubuntu4.1_all.deb Remote server support for Déjà Dup
deja-dup_30.0-0ubuntu4.1_i386.deb Back up your files
dejagnu_1.5-3ubuntu1_all.deb framework for running test suites on software tools
Advertisement
Advertisement