Revision 8184,
1.4 KB
checked in by iwamoto, 11 years ago
(diff) |
20140114-1..7: security announcement
|
Line | |
---|
1 | <date> |
---|
2 | 2014,01,14 |
---|
3 | |
---|
4 | <title> |
---|
5 | curl にセキュリティホール |
---|
6 | |
---|
7 | <target> |
---|
8 | 6.2/i386, 6.2/x86_64 |
---|
9 | |
---|
10 | <url> |
---|
11 | http://curl.haxx.se/docs/adv_20131115.html [^] |
---|
12 | http://curl.haxx.se/docs/adv_20131217.html [^] |
---|
13 | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4545 |
---|
14 | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6422 |
---|
15 | http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005232.html |
---|
16 | http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005698.html |
---|
17 | |
---|
18 | <info> |
---|
19 | curl に問題が発見されました。<br/> |
---|
20 | 中間者攻撃 (man-in-the-middle attack) により、任意の有効な証明書を介して、SSL サーバになりすまされる可能性があります。<br/> |
---|
21 | (CVE-2013-4545, CVE-2013-6422)<br/> |
---|
22 | <br/> |
---|
23 | |
---|
24 | <directory> |
---|
25 | Vine-6.2/updates/RPMS/i386 |
---|
26 | Vine-6.2/updates/RPMS/x86_64 |
---|
27 | |
---|
28 | <update> |
---|
29 | [ size ] [ SHA1 checksum ] [ file name ] |
---|
30 | 2243876 b08b101f2491ea73d57a03cf896a82ee0ac6c7ce curl-7.32.0-3vl6.src.rpm |
---|
31 | |
---|
32 | 597320 c48bcf6363862c582d7707c8c320132e526052bc curl-7.32.0-3vl6.i686.rpm |
---|
33 | 208754 417b91d490fb5f19968a66b3c4fd536029ea136d curl-devel-7.32.0-3vl6.i686.rpm |
---|
34 | |
---|
35 | 203117 194773fb0f9259daba2daab7be238eb3604fae87 compat32-curl-7.32.0-3vl6.i686.rpm |
---|
36 | 9523 78d5a49f9c13881aa762ff3aed91505aedbd4154 compat32-curl-devel-7.32.0-3vl6.i686.rpm |
---|
37 | 591538 649610fc05d9667788463275050da91c1749c9af curl-7.32.0-3vl6.x86_64.rpm |
---|
38 | 208704 660f8d3c7c493bc9ee6aad0cda28e47d4d89a4c1 curl-devel-7.32.0-3vl6.x86_64.rpm |
---|
Note: See
TracBrowser
for help on using the repository browser.