Site Navigation:
security curl-7.29.0-7.fc19 critical path security update
Status:stable
Release: Fedora 19
Update ID: FEDORA-2013-11521
Builds: curl-7.29.0-7.fc19 (logs)
Pushed: True
Date Submitted: 2013-06-22 21:49:56
Date Released: 2013-06-23 18:34:29
Date Modified: 2013-06-27 08:48:48
Submitter: kdudka
Karma: 3
Stable karma: 3
Unstable karma: -3
Details

CVE-2013-2174 - fix heap-based buffer overflow in curl_easy_unescape()

Bugs Fixed
965640 - CVE-2013-2174: curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs
978227 - CVE-2013-2174: curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs [fedora-all]
Feedback
bodhi - 2013-06-22 21:50:00
This update has been submitted for testing by kdudka.
bodhi - 2013-06-23 16:53:02
This update is currently being pushed to the Fedora 19 testing updates repository.
bodhi - 2013-06-23 19:03:37
This update has been pushed to testing
ignatenkobrain - 2013-06-25 19:14:02
no regression
patches (proventesters) - 2013-06-26 15:57:48
no regressions noted
raven - 2013-06-26 17:57:43
Works fine.
bodhi - 2013-06-26 17:57:46
This update has reached the stable karma threshold and will be pushed to the stable updates repository
autoqa - 2013-06-26 19:33:16
AutoQA: upgradepath test PASSED on noarch. Result log: http://autoqa.fedoraproject.org/report/vrot (results are informative only)
kdudka - 2013-06-27 08:03:19
Thanks for testing!
autoqa - 2013-06-27 09:05:29
AutoQA: upgradepath test PASSED on noarch. Result log: http://autoqa.fedoraproject.org/report/vto2 (results are informative only)
autoqa - 2013-06-28 08:43:45
AutoQA: depcheck test PASSED on i386. Result log: http://autoqa.fedoraproject.org/report/vxwx (results are informative only)
autoqa - 2013-06-28 20:49:06
AutoQA: depcheck test PASSED on x86_64. Result log: http://autoqa.fedoraproject.org/report/w15g (results are informative only)
bodhi - 2013-06-29 15:29:40
This update is currently being pushed to the Fedora 19 stable updates repository.
bodhi - 2013-06-29 18:43:58
This update has been pushed to stable

Add a comment

Tip: Login to impact how quickly this update gets pushed or unpushed.
obfuscated letters