-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 02 Apr 2024 20:02:10 -0300
Source: curl
Binary: curl curl-dbgsym libcurl3-gnutls libcurl3-gnutls-dbgsym libcurl3-nss libcurl3-nss-dbgsym libcurl4 libcurl4-dbgsym libcurl4-gnutls-dev libcurl4-nss-dev libcurl4-openssl-dev
Architecture: armel
Version: 7.88.1-10+deb12u6
Distribution: bookworm
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-02) <buildd_arm64-arm-conova-02@buildd.debian.org>
Changed-By: Guilherme Puida Moreira <guilherme@puida.xyz>
Description:
 curl       - command line tool for transferring data with URL syntax
 libcurl3-gnutls - easy-to-use client-side URL transfer library (GnuTLS flavour)
 libcurl3-nss - easy-to-use client-side URL transfer library (NSS flavour)
 libcurl4   - easy-to-use client-side URL transfer library (OpenSSL flavour)
 libcurl4-gnutls-dev - development files and documentation for libcurl (GnuTLS flavour)
 libcurl4-nss-dev - development files and documentation for libcurl (NSS flavour)
 libcurl4-openssl-dev - development files and documentation for libcurl (OpenSSL flavour)
Closes: 1053643
Changes:
 curl (7.88.1-10+deb12u6) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Sergio Durigan Junior ]
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     (Closes: #1053643)
 .
   [ Guilherme Puida Moreira ]
   * Add patches to fix CVE-2024-2004 and CVE-2024-2398.
     - CVE-2024-2004: When a protocol selection parameter disables all
       protocols without adding any then the default set of protocols would
       remain in the allowed set due to an error in the logic for removing
       protocols.
     - CVE-2024-2398: When an application tells libcurl it wants to allow
       HTTP/2 server push and the amount of received headers for the push
       surpasses the maximum allowed limit (1000), libcurl aborts the server
       push and leaks the memory allocated for the previously allocated
       headers.
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     Refresh patch.
Checksums-Sha1:
 eaf30637f4ad71754339acdc830872518fe15ab0 157224 curl-dbgsym_7.88.1-10+deb12u6_armel.deb
 752228c93cd5680a3ad0872798ce0dd1a114d6f8 12838 curl_7.88.1-10+deb12u6_armel-buildd.buildinfo
 b83b731b80774b0ec3f02f78bff4e6f4c101f8bb 305324 curl_7.88.1-10+deb12u6_armel.deb
 333fb7fbae235beb4ecbbc9f8fb0bd09c88e4b11 988780 libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_armel.deb
 8eac1c8a49ab36363abfa075b07c6302bd01e558 342216 libcurl3-gnutls_7.88.1-10+deb12u6_armel.deb
 0322ce48f11be100ee727c664adb8dd606cf57e2 1035340 libcurl3-nss-dbgsym_7.88.1-10+deb12u6_armel.deb
 4b67b284ad85b8246933069111a380515cf78789 348896 libcurl3-nss_7.88.1-10+deb12u6_armel.deb
 ab183066af3946f9e008a3c4812cefbd3fb818eb 1014444 libcurl4-dbgsym_7.88.1-10+deb12u6_armel.deb
 e2df2c4b9d2ba21c7c0d96bb970407c6ed36a033 447820 libcurl4-gnutls-dev_7.88.1-10+deb12u6_armel.deb
 bde140daaa08e57b19e51f586983a5ed49dc2506 456372 libcurl4-nss-dev_7.88.1-10+deb12u6_armel.deb
 1fe323e9fb4f2a6502eca19b74371a7b1c69aa35 452864 libcurl4-openssl-dev_7.88.1-10+deb12u6_armel.deb
 de42d7db27f676c383531c1d668d1da187b170bc 347048 libcurl4_7.88.1-10+deb12u6_armel.deb
Checksums-Sha256:
 9f6aa1417adfdc24fe1488ee968bf6b554c92f91d5acde6cfffb041226741c1d 157224 curl-dbgsym_7.88.1-10+deb12u6_armel.deb
 f8b1f31741b3c0e20d6221fc55e95dbabe76ace25e825623c2be1095839ce3d2 12838 curl_7.88.1-10+deb12u6_armel-buildd.buildinfo
 d819fe94a154bf1cc8db0a60159dbac9eef806a597d7b748cb0ee914bb0e2c94 305324 curl_7.88.1-10+deb12u6_armel.deb
 4c93e43a9e0c795aaa7f80e46a6ef916db6fb2a35a103d11163f3ae971235161 988780 libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_armel.deb
 4d873c15513f8b3475cc455d3ac8e4d6c71d088e38e82659f8f38b1cf0cdfa52 342216 libcurl3-gnutls_7.88.1-10+deb12u6_armel.deb
 ecfcee1dfdf7abf8ca6cd0f0d5bc9e532d2c6ff01cd2c0c1650184c3d8503214 1035340 libcurl3-nss-dbgsym_7.88.1-10+deb12u6_armel.deb
 6194f7ab4bec332ec07e31e37b50d79653db47711d38da3b5548c2f1467bf90d 348896 libcurl3-nss_7.88.1-10+deb12u6_armel.deb
 2ae266884bcaf4faadba35d5097d08a6c23b06f322863a6a4de6821ed3ada8d5 1014444 libcurl4-dbgsym_7.88.1-10+deb12u6_armel.deb
 3ffd03a2e7ddfcd61cfc1e8b436766a8eca173601b4222b0a8c66d3ba6d466de 447820 libcurl4-gnutls-dev_7.88.1-10+deb12u6_armel.deb
 21b38553b295fa29ed27cad8138e934d532078b6715355c0acdadcc5d14f4cb7 456372 libcurl4-nss-dev_7.88.1-10+deb12u6_armel.deb
 c1544403a082a6c2978f8071bfbd55801a4514b541c1646c442477543b4fab96 452864 libcurl4-openssl-dev_7.88.1-10+deb12u6_armel.deb
 de8fbc4f302cec23fea73a9a8f85613b57bc212a0ca40de33d8ccfc8acdaff5a 347048 libcurl4_7.88.1-10+deb12u6_armel.deb
Files:
 3e6499ec3fc87e509684f85e56ea6c29 157224 debug optional curl-dbgsym_7.88.1-10+deb12u6_armel.deb
 edc57d3745c0048f380d3175f2bec14c 12838 web optional curl_7.88.1-10+deb12u6_armel-buildd.buildinfo
 7ba66e1e44a11a1c573b374480c42373 305324 web optional curl_7.88.1-10+deb12u6_armel.deb
 c242b494a9b2f2234225e5fdad52200b 988780 debug optional libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_armel.deb
 b85ee62aaac98c3df0672f065f0c1649 342216 libs optional libcurl3-gnutls_7.88.1-10+deb12u6_armel.deb
 e1a83797aa854246dcce447bfccc36ac 1035340 debug optional libcurl3-nss-dbgsym_7.88.1-10+deb12u6_armel.deb
 a115b97070efc2a10aa60821404ffa62 348896 libs optional libcurl3-nss_7.88.1-10+deb12u6_armel.deb
 891e6ea317050d83452dbb649b274a59 1014444 debug optional libcurl4-dbgsym_7.88.1-10+deb12u6_armel.deb
 65f922f1970e38834e50d549050d5a00 447820 libdevel optional libcurl4-gnutls-dev_7.88.1-10+deb12u6_armel.deb
 a6a9a7fd44fbc31c09dd56bb19207f49 456372 libdevel optional libcurl4-nss-dev_7.88.1-10+deb12u6_armel.deb
 b2911d1cdc9979aceb3ddd02ac82fddd 452864 libdevel optional libcurl4-openssl-dev_7.88.1-10+deb12u6_armel.deb
 81e1d2fa955e3f58a5b655c16fa4f0b1 347048 libs optional libcurl4_7.88.1-10+deb12u6_armel.deb

-----BEGIN PGP SIGNATURE-----
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=4/tw
-----END PGP SIGNATURE-----