[continued from previous message]
For the testing (jessie) and unstable (sid) distributions, the curl<br>
command line tool behaves as expected with the --insecure option.<br>
For reference the original advisory text follows.<br>
Scott Cantor discovered that curl, a file retrieval tool, would disable<br>
the CURLOPT_SSLVERIFYHOST check when the CURLOPT_SSL_VERIFYPEER setting<br>
was disabled. �This would also disable ssl certificate host name checks<br> when it should have only disabled verification of the certificate trust<br> chain.<br>
The default configuration for the curl package is not affected by this<br> issue since CURLOPT_SSLVERIFYPEER is enabled by default.<br>
For the oldstable distribution (squeeze), this problem has been fixed in<br> version <a href="tel:7.21.0-2.1" value="+43721021">7.21.0-2.1</a>+squeeze5.<br>
For the stable distribution (wheezy), this problem has been fixed in<br> version 7.26.0-1+wheezy5.<br>
For the testing (jessie) and unstable (sid) distributions, this problem<br>
has been fixed in version 7.33.0-1.<br>
We recommend that you upgrade your curl packages.<br>
Further information about Debian Security Advisories, how to apply<br>
these updates to your system and frequently asked questions can be<br>
found at: <a href="
http://www.debian.org/security/" target="_blank">
http://www.debian.org/security/</a><br>
Mailing list: <a href="mailto:
[email protected]">
[email protected]</a><br>
-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v1.4.15 (GNU/Linux)<br>
iQIcBAEBCgAGBQJSjTSeAAoJEAVMuPMTQ89E+bMP/jxYqQsDtXJxFvefUBDI4Mki<br> 3j6l+WsSd+GhEx/Sp7CYpUYmNjfybYZl2MdXeOfyB3czF3saBhpEo4/wXeLEJuQD<br> PjA52GRvnfE4/pDnAIcHhbkfrI2MSJMU+NUpC2d2Zy2YAgQoeSBftSb91xZ9B1SI<br> jbuiKNrSgIgcusBSmNFCXb4TdkCVhGi37B7J7NO9rPR6n6yBvX1xsIEJYOGJeMxL<br> S9OWwbmcwjCdN6feNVK99YgfmEmRGLTpMosAmJSNN4KXa+OSr+g9Y+NHkve+CYy/<br> GmKX/MInXaWdcRk4LoyEdQ8idhWdJEdPe7ZEoLttSGnfLUyXBzTVKbK5Ugx6RYM8<br> 1NbKYZVGYfQAOwjIbKgGn0F5eQDi+OiXh1JleyLa7y8pvk+7tq6pOKAsa9H2rDsn<br> nVTVzOs6qIDdjESndLEUNG+JJJpkpB/MOAfdAx4KHKS7GQ+quMg99azUdSmDRFbC<br> EN8XA8JrC0LOSeUJiiZTdRgOpjlTKgXUHKrr9Z0Ft/U/uWxK9pX5nTcaw/WwI+vQ<br> Ms7yx0i0WrTvGkTXLHx+JeGrPcvjNxX8muTEq07ZkceDjZIefmZs0J139Xd+OSn1<br> M506eYcVgf4WNj8swR0h20S8eTA0BsNxXVOHmn113bwd95GxaTM4pKtANHuKLV3l<br> Jq399e4/SnX3FWtSPFuK<br>
=v0Ra<br>
-----END PGP SIGNATURE-----<br>
--<br>
To UNSUBSCRIBE, email to <a href="mailto:
[email protected]">
[email protected]</a><br>
with a subject of "unsubscribe". Trouble? Contact <a href="mailto:
[email protected]">
[email protected]</a><br>
Archive: <a href="
http://lists.debian.org/[email protected]" target="_blank">
http://lists.debian.org/[email protected]</a><br>
</blockquote></div>
--047d7b5d45d001519704eba332fa--
--
To UNSUBSCRIBE, email to
[email protected]
with a subject of "unsubscribe". Trouble? Contact
[email protected] Archive:
http://lists.debian.org/CALcu3mu-KdJC5AXBhC73VqXK3iJgH7SPQoXkDR8YOjNdoeMv8Q@mail.gmail.com
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)