This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
SECURITY: curl (CVE-2006-1061)
- From: "Yaakov S (Cygwin Ports)" <yselkowitz at users dot sourceforge dot net>
- To: cygwin-apps at cygwin dot com
- Date: Thu, 23 Mar 2006 20:25:35 -0600
- Subject: SECURITY: curl (CVE-2006-1061)
libcurl is affected by a buffer overflow in the handling of URLs for
the TFTP protocol, which could be exploited to compromise a user's
system.
Solution: upgrade to 7.15.3.
More information:
http://security.gentoo.org/glsa/glsa-200603-19.xml
http://curl.haxx.se/docs/adv_20060320.html
Yaakov