-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 02 Apr 2024 20:02:10 -0300
Source: curl
Binary: curl curl-dbgsym libcurl3-gnutls libcurl3-gnutls-dbgsym libcurl3-nss libcurl3-nss-dbgsym libcurl4 libcurl4-dbgsym libcurl4-gnutls-dev libcurl4-nss-dev libcurl4-openssl-dev
Architecture: i386
Version: 7.88.1-10+deb12u6
Distribution: bookworm
Urgency: medium
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) <buildd_amd64-x86-conova-02@buildd.debian.org>
Changed-By: Guilherme Puida Moreira <guilherme@puida.xyz>
Description:
 curl       - command line tool for transferring data with URL syntax
 libcurl3-gnutls - easy-to-use client-side URL transfer library (GnuTLS flavour)
 libcurl3-nss - easy-to-use client-side URL transfer library (NSS flavour)
 libcurl4   - easy-to-use client-side URL transfer library (OpenSSL flavour)
 libcurl4-gnutls-dev - development files and documentation for libcurl (GnuTLS flavour)
 libcurl4-nss-dev - development files and documentation for libcurl (NSS flavour)
 libcurl4-openssl-dev - development files and documentation for libcurl (OpenSSL flavour)
Closes: 1053643
Changes:
 curl (7.88.1-10+deb12u6) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Sergio Durigan Junior ]
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     (Closes: #1053643)
 .
   [ Guilherme Puida Moreira ]
   * Add patches to fix CVE-2024-2004 and CVE-2024-2398.
     - CVE-2024-2004: When a protocol selection parameter disables all
       protocols without adding any then the default set of protocols would
       remain in the allowed set due to an error in the logic for removing
       protocols.
     - CVE-2024-2398: When an application tells libcurl it wants to allow
       HTTP/2 server push and the amount of received headers for the push
       surpasses the maximum allowed limit (1000), libcurl aborts the server
       push and leaks the memory allocated for the previously allocated
       headers.
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     Refresh patch.
Checksums-Sha1:
 4e0180c66f28980737dd681f8e594d1d1daf8d2b 145028 curl-dbgsym_7.88.1-10+deb12u6_i386.deb
 867ce83c1a0fd2b68c499c7c945bf8c0ac4df32d 12872 curl_7.88.1-10+deb12u6_i386-buildd.buildinfo
 6704948a1690e8c65321624884aca967aabec678 318936 curl_7.88.1-10+deb12u6_i386.deb
 87516be98219c3e7db1a6d9be953cec351c46b61 911448 libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_i386.deb
 6c16bb24957422dd7182c5f88f5d6a18dacf489d 418060 libcurl3-gnutls_7.88.1-10+deb12u6_i386.deb
 bbb197aaa6bf6afd673307c6073711b06201d7f2 952844 libcurl3-nss-dbgsym_7.88.1-10+deb12u6_i386.deb
 40ff00bc670feee6289d5e899128868ced555a08 426012 libcurl3-nss_7.88.1-10+deb12u6_i386.deb
 1a7c5851e7dc3898e172a9dd7c493545690ae1d9 931440 libcurl4-dbgsym_7.88.1-10+deb12u6_i386.deb
 84e701db1e3e2f7160f01b45e4c9485c01a11b2a 532228 libcurl4-gnutls-dev_7.88.1-10+deb12u6_i386.deb
 986ebc2148edda5cd269af8bb750282814542c70 541612 libcurl4-nss-dev_7.88.1-10+deb12u6_i386.deb
 106606b05992fac04dd98c2d6182eabb54ea3380 538680 libcurl4-openssl-dev_7.88.1-10+deb12u6_i386.deb
 e082ce4974d67527357194c595bf05e1e295c543 424748 libcurl4_7.88.1-10+deb12u6_i386.deb
Checksums-Sha256:
 4cc4170bfc69605d1564072bc03d7b317a6775fae33b9eb843463b6bb837e26e 145028 curl-dbgsym_7.88.1-10+deb12u6_i386.deb
 052b6cdf59c71f4e533da8f1b9def7864bd0cc656e10eda89e41a4f9bb3a3a5c 12872 curl_7.88.1-10+deb12u6_i386-buildd.buildinfo
 22eb98ae2d13356b3b09f5894060ece6724f9628ff9d7fba9bc3b336156c4c4a 318936 curl_7.88.1-10+deb12u6_i386.deb
 aa3186af4dabafa13b0bb9fb65a7292beefdcd6d6390fb08fe35a3708391efea 911448 libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_i386.deb
 006e345791f2ff80fdc1c82de89fa7bfc8ac365f43a9fee0a37b86ccf9144d55 418060 libcurl3-gnutls_7.88.1-10+deb12u6_i386.deb
 20d29a71ab0d15f5c4d512be1d25f0a7a60c36b8b54ba67c6a13aaddb659755f 952844 libcurl3-nss-dbgsym_7.88.1-10+deb12u6_i386.deb
 14edbd34e88e87a0101a991d2d71de2a98230cbf920fe33d04ba98266ac093bc 426012 libcurl3-nss_7.88.1-10+deb12u6_i386.deb
 ec9c1e539fe1705b0c6fc37c9b9790749cef90a4dd8f25c1e29eccc066db3c54 931440 libcurl4-dbgsym_7.88.1-10+deb12u6_i386.deb
 662ba4aad059b3a24f4be51ed4c9424af5f2dec2fac21c19f8d1f9e4c1045c64 532228 libcurl4-gnutls-dev_7.88.1-10+deb12u6_i386.deb
 26ddac2a89088aa03f92e422fbcda1ab31f5407672c0d9bbd938503ecdb0902e 541612 libcurl4-nss-dev_7.88.1-10+deb12u6_i386.deb
 4d626e419a5bde4604e3097d2226bc4462dd5afbd8aeb885c52b7cbac7e36780 538680 libcurl4-openssl-dev_7.88.1-10+deb12u6_i386.deb
 e6fa650224ac5901ed51769f439d643f6761a92a0b835aee250a3870eacffdc4 424748 libcurl4_7.88.1-10+deb12u6_i386.deb
Files:
 65beffc2987140a44304475a2c75e9b4 145028 debug optional curl-dbgsym_7.88.1-10+deb12u6_i386.deb
 fd379bc5f91bd02b814de57f228d702c 12872 web optional curl_7.88.1-10+deb12u6_i386-buildd.buildinfo
 f03b19021185a27054a83b7aa60c59f7 318936 web optional curl_7.88.1-10+deb12u6_i386.deb
 5bdc8901337252ceace820e201cb8e43 911448 debug optional libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_i386.deb
 f79587f4e381849be9edb445505c9a0d 418060 libs optional libcurl3-gnutls_7.88.1-10+deb12u6_i386.deb
 85ef9c3ec7bc4a91603fa78ecb4f67fc 952844 debug optional libcurl3-nss-dbgsym_7.88.1-10+deb12u6_i386.deb
 3b638de9bded089acdef0f6eb37e2fb3 426012 libs optional libcurl3-nss_7.88.1-10+deb12u6_i386.deb
 9b223e82ccb127bd9b2bafcfb89b3fc1 931440 debug optional libcurl4-dbgsym_7.88.1-10+deb12u6_i386.deb
 716ba28929f07889ed4d9ffe25843325 532228 libdevel optional libcurl4-gnutls-dev_7.88.1-10+deb12u6_i386.deb
 fba5afdc0744495a8490fa5d634d8ef4 541612 libdevel optional libcurl4-nss-dev_7.88.1-10+deb12u6_i386.deb
 e63265edcd888e852e3bc2e0e512f2cc 538680 libdevel optional libcurl4-openssl-dev_7.88.1-10+deb12u6_i386.deb
 d5ab43ac3fe74116b3437bf474f3f3e8 424748 libs optional libcurl4_7.88.1-10+deb12u6_i386.deb

-----BEGIN PGP SIGNATURE-----
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=xoUJ
-----END PGP SIGNATURE-----