Skip to navigation

Security Advisory Moderate: curl security update

Advisory: RHSA-2009:0341-5
Type: Security Advisory
Severity: Moderate
Issued on: 2009-03-19
Last updated on: 2009-03-19
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Desktop (v. 3)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.7.z)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux ES (v. 2.1)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.7.z)
Red Hat Enterprise Linux EUS (v. 5.3.z server)
Red Hat Enterprise Linux Long Life (v. 5.3 server)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Enterprise Linux WS (v. 3)
Red Hat Enterprise Linux WS (v. 4)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
CVEs (cve.mitre.org): CVE-2009-0037

Details

Updated curl packages that fix a security issue are now available for Red
Hat Enterprise Linux 2.1, 3, 4, and 5.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict
servers, using any of the supported protocols. cURL is designed to work
without user interaction or any kind of interactivity.

David Kierznowski discovered a flaw in libcurl where it would not
differentiate between different target URLs when handling automatic
redirects. This caused libcurl to follow any new URL that it understood,
including the "file://" URL type. This could allow a remote server to force
a local libcurl-using application to read a local file instead of the
remote one, possibly exposing local files that were not meant to be
exposed. (CVE-2009-0037)

Note: Applications using libcurl that are expected to follow redirects to
"file://" protocol must now explicitly call curl_easy_setopt(3) and set the
newly introduced CURLOPT_REDIR_PROTOCOLS option as required.

cURL users should upgrade to these updated packages, which contain
backported patches to correct these issues. All running applications using
libcurl must be restarted for the update to take effect.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

IA-32:
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
 
x86_64:
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
curl-devel-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2013:0983
    MD5: e105575beb56be263e540ffce481ad8b
 
Red Hat Desktop (v. 3)

SRPMS:
curl-7.10.6-9.rhel3.src.rpm
File outdated by:  RHSA-2010:0329
    MD5: 64ca6b74a65629dcdb63ad3e8a7fcf74
 
IA-32:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-devel-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: d85f84c60184477e39a8195d012e0779
 
x86_64:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: 2f36c5c6131f7d0a4aecee163592d0e7
curl-devel-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: a89ec090434680365624e761eaecfbb9
 
Red Hat Desktop (v. 4)

SRPMS:
curl-7.12.1-11.1.el4_7.1.src.rpm
File outdated by:  RHSA-2011:0918
    MD5: b16bf683ce5596221f763da091c67075
 
IA-32:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-devel-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: f0231838cdb7455f3fa7dcb9277db17d
 
x86_64:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: df36d6de99b64e8be45493bdd0ecd56b
curl-devel-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: acdbb5c5e62970e031b0b43225d9b892
 
Red Hat Enterprise Linux (v. 5 server)

IA-32:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 7fbd081f150909be0a78d7ea4fae2658
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
 
IA-64:
curl-7.15.5-2.1.el5_3.4.ia64.rpm
File outdated by:  RHSA-2013:0983
    MD5: 19a71d89eb9dea95634e72dc4955a12c
curl-devel-7.15.5-2.1.el5_3.4.ia64.rpm
File outdated by:  RHSA-2013:0983
    MD5: aff0d26cc28378f597971a7e6f77713b
 
PPC:
curl-7.15.5-2.1.el5_3.4.ppc.rpm
File outdated by:  RHSA-2013:0983
    MD5: 4c6661c0aac91250e50a9a23ce230428
curl-7.15.5-2.1.el5_3.4.ppc64.rpm
File outdated by:  RHSA-2013:0983
    MD5: 31dfb0b01084fdc7c36da4fe7cf3d938
curl-devel-7.15.5-2.1.el5_3.4.ppc.rpm
File outdated by:  RHSA-2013:0983
    MD5: 3b9323e458506872bb04e0dac98e9990
curl-devel-7.15.5-2.1.el5_3.4.ppc64.rpm
File outdated by:  RHSA-2013:0983
    MD5: b55c2bb81fb03467a6d8e6caab261356
 
s390x:
curl-7.15.5-2.1.el5_3.4.s390.rpm
File outdated by:  RHSA-2013:0983
    MD5: 0cdf0bf07430b073eb4d743962a5eca0
curl-7.15.5-2.1.el5_3.4.s390x.rpm
File outdated by:  RHSA-2013:0983
    MD5: 6737db10d1271c1cc5b61f068f5cd1c0
curl-devel-7.15.5-2.1.el5_3.4.s390.rpm
File outdated by:  RHSA-2013:0983
    MD5: 62ee5d8e4ef152ba1105e0574ea0d607
curl-devel-7.15.5-2.1.el5_3.4.s390x.rpm
File outdated by:  RHSA-2013:0983
    MD5: 23573d9b420845f5483bc47359a1510f
 
x86_64:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 7fbd081f150909be0a78d7ea4fae2658
curl-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2013:0983
    MD5: 89b0ba3c843c61515de1a018bd5a20c5
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
curl-devel-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2013:0983
    MD5: e105575beb56be263e540ffce481ad8b
 
Red Hat Enterprise Linux AS (v. 2.1)

SRPMS:
curl-7.8-3.rhel2.src.rpm     MD5: 94ca31051ac8066b1a79e1c181c25ef3
 
IA-32:
curl-7.8-3.rhel2.i386.rpm     MD5: b31822dfb5d24c2c280b88deae8937a3
curl-devel-7.8-3.rhel2.i386.rpm     MD5: 2b6cd70f53675f8cd2b3174544d0076e
 
IA-64:
curl-7.8-3.rhel2.ia64.rpm     MD5: 93159a91f6be1a0a36ed7dd11561b8e4
curl-devel-7.8-3.rhel2.ia64.rpm     MD5: 2aed89b6c4a6a89958ff84d8f643e0ea
 
Red Hat Enterprise Linux AS (v. 3)

SRPMS:
curl-7.10.6-9.rhel3.src.rpm
File outdated by:  RHSA-2010:0329
    MD5: 64ca6b74a65629dcdb63ad3e8a7fcf74
 
IA-32:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-devel-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: d85f84c60184477e39a8195d012e0779
 
IA-64:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-7.10.6-9.rhel3.ia64.rpm
File outdated by:  RHSA-2010:0329
    MD5: cf667b687d14475451779561549b8083
curl-devel-7.10.6-9.rhel3.ia64.rpm
File outdated by:  RHSA-2010:0329
    MD5: e9e9d30068b487eef04bfa27b0ae46a9
 
PPC:
curl-7.10.6-9.rhel3.ppc.rpm
File outdated by:  RHSA-2010:0329
    MD5: ef059da827a7bd0f4eb59e4499eeb8bb
curl-7.10.6-9.rhel3.ppc64.rpm
File outdated by:  RHSA-2010:0329
    MD5: aa8929a5a5a6f454ac143235484e5104
curl-devel-7.10.6-9.rhel3.ppc.rpm
File outdated by:  RHSA-2010:0329
    MD5: cb95de78ceb1d7b43c236ac1493053a8
 
s390:
curl-7.10.6-9.rhel3.s390.rpm
File outdated by:  RHSA-2010:0329
    MD5: e291cf14273b27b49ee2e1eac18b118d
curl-devel-7.10.6-9.rhel3.s390.rpm
File outdated by:  RHSA-2010:0329
    MD5: 745397329f93c5a757b10b4e740ac44b
 
s390x:
curl-7.10.6-9.rhel3.s390.rpm
File outdated by:  RHSA-2010:0329
    MD5: e291cf14273b27b49ee2e1eac18b118d
curl-7.10.6-9.rhel3.s390x.rpm
File outdated by:  RHSA-2010:0329
    MD5: 744d9f02589af760906a2e7428f27052
curl-devel-7.10.6-9.rhel3.s390x.rpm
File outdated by:  RHSA-2010:0329
    MD5: 6524aa0af3aef8b43eb3e8ad5094b5b8
 
x86_64:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: 2f36c5c6131f7d0a4aecee163592d0e7
curl-devel-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: a89ec090434680365624e761eaecfbb9
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
curl-7.12.1-11.1.el4_7.1.src.rpm
File outdated by:  RHSA-2011:0918
    MD5: b16bf683ce5596221f763da091c67075
 
IA-32:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-devel-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: f0231838cdb7455f3fa7dcb9277db17d
 
IA-64:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.ia64.rpm
File outdated by:  RHSA-2011:0918
    MD5: 10a6bbe097c60035055a79c10d08cb17
curl-devel-7.12.1-11.1.el4_7.1.ia64.rpm
File outdated by:  RHSA-2011:0918
    MD5: 0fe61813f668b2461cb83599ad583e9c
 
PPC:
curl-7.12.1-11.1.el4_7.1.ppc.rpm
File outdated by:  RHSA-2011:0918
    MD5: 90ed14808c998f7d244203720a0bdc81
curl-7.12.1-11.1.el4_7.1.ppc64.rpm
File outdated by:  RHSA-2011:0918
    MD5: 1a9789d071ad4e2123fc64a8708ff714
curl-devel-7.12.1-11.1.el4_7.1.ppc.rpm
File outdated by:  RHSA-2011:0918
    MD5: 959150c3830d8ec49fd8c3d01919e629
 
s390:
curl-7.12.1-11.1.el4_7.1.s390.rpm
File outdated by:  RHSA-2011:0918
    MD5: fb21eee1d37d60b68b8926fb9c33ead8
curl-devel-7.12.1-11.1.el4_7.1.s390.rpm
File outdated by:  RHSA-2011:0918
    MD5: fa5d3191d75b67a0354d0e3858628e78
 
s390x:
curl-7.12.1-11.1.el4_7.1.s390.rpm
File outdated by:  RHSA-2011:0918
    MD5: fb21eee1d37d60b68b8926fb9c33ead8
curl-7.12.1-11.1.el4_7.1.s390x.rpm
File outdated by:  RHSA-2011:0918
    MD5: 4f60d35b4e96c8a4c189b08bbb4fd0c8
curl-devel-7.12.1-11.1.el4_7.1.s390x.rpm
File outdated by:  RHSA-2011:0918
    MD5: c299fb8d823f98d0c121c07f4d89bbca
 
x86_64:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: df36d6de99b64e8be45493bdd0ecd56b
curl-devel-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: acdbb5c5e62970e031b0b43225d9b892
 
Red Hat Enterprise Linux AS (v. 4.7.z)

SRPMS:
curl-7.12.1-11.1.el4_7.1.src.rpm
File outdated by:  RHSA-2011:0918
    MD5: b16bf683ce5596221f763da091c67075
 
IA-32:
curl-7.12.1-11.1.el4_7.1.i386.rpm     MD5: 37cf2c81883316d171d81ffae00e7387
curl-devel-7.12.1-11.1.el4_7.1.i386.rpm     MD5: f0231838cdb7455f3fa7dcb9277db17d
 
IA-64:
curl-7.12.1-11.1.el4_7.1.i386.rpm     MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.ia64.rpm     MD5: 10a6bbe097c60035055a79c10d08cb17
curl-devel-7.12.1-11.1.el4_7.1.ia64.rpm     MD5: 0fe61813f668b2461cb83599ad583e9c
 
PPC:
curl-7.12.1-11.1.el4_7.1.ppc.rpm     MD5: 90ed14808c998f7d244203720a0bdc81
curl-7.12.1-11.1.el4_7.1.ppc64.rpm     MD5: 1a9789d071ad4e2123fc64a8708ff714
curl-devel-7.12.1-11.1.el4_7.1.ppc.rpm     MD5: 959150c3830d8ec49fd8c3d01919e629
 
s390:
curl-7.12.1-11.1.el4_7.1.s390.rpm     MD5: fb21eee1d37d60b68b8926fb9c33ead8
curl-devel-7.12.1-11.1.el4_7.1.s390.rpm     MD5: fa5d3191d75b67a0354d0e3858628e78
 
s390x:
curl-7.12.1-11.1.el4_7.1.s390.rpm     MD5: fb21eee1d37d60b68b8926fb9c33ead8
curl-7.12.1-11.1.el4_7.1.s390x.rpm     MD5: 4f60d35b4e96c8a4c189b08bbb4fd0c8
curl-devel-7.12.1-11.1.el4_7.1.s390x.rpm     MD5: c299fb8d823f98d0c121c07f4d89bbca
 
x86_64:
curl-7.12.1-11.1.el4_7.1.i386.rpm     MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.x86_64.rpm     MD5: df36d6de99b64e8be45493bdd0ecd56b
curl-devel-7.12.1-11.1.el4_7.1.x86_64.rpm     MD5: acdbb5c5e62970e031b0b43225d9b892
 
Red Hat Enterprise Linux Desktop (v. 5 client)

IA-32:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 7fbd081f150909be0a78d7ea4fae2658
 
x86_64:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2013:0983
    MD5: 7fbd081f150909be0a78d7ea4fae2658
curl-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2013:0983
    MD5: 89b0ba3c843c61515de1a018bd5a20c5
 
Red Hat Enterprise Linux ES (v. 2.1)

SRPMS:
curl-7.8-3.rhel2.src.rpm     MD5: 94ca31051ac8066b1a79e1c181c25ef3
 
IA-32:
curl-7.8-3.rhel2.i386.rpm     MD5: b31822dfb5d24c2c280b88deae8937a3
curl-devel-7.8-3.rhel2.i386.rpm     MD5: 2b6cd70f53675f8cd2b3174544d0076e
 
Red Hat Enterprise Linux ES (v. 3)

SRPMS:
curl-7.10.6-9.rhel3.src.rpm
File outdated by:  RHSA-2010:0329
    MD5: 64ca6b74a65629dcdb63ad3e8a7fcf74
 
IA-32:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-devel-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: d85f84c60184477e39a8195d012e0779
 
IA-64:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-7.10.6-9.rhel3.ia64.rpm
File outdated by:  RHSA-2010:0329
    MD5: cf667b687d14475451779561549b8083
curl-devel-7.10.6-9.rhel3.ia64.rpm
File outdated by:  RHSA-2010:0329
    MD5: e9e9d30068b487eef04bfa27b0ae46a9
 
x86_64:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: 2f36c5c6131f7d0a4aecee163592d0e7
curl-devel-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: a89ec090434680365624e761eaecfbb9
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
curl-7.12.1-11.1.el4_7.1.src.rpm
File outdated by:  RHSA-2011:0918
    MD5: b16bf683ce5596221f763da091c67075
 
IA-32:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-devel-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: f0231838cdb7455f3fa7dcb9277db17d
 
IA-64:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.ia64.rpm
File outdated by:  RHSA-2011:0918
    MD5: 10a6bbe097c60035055a79c10d08cb17
curl-devel-7.12.1-11.1.el4_7.1.ia64.rpm
File outdated by:  RHSA-2011:0918
    MD5: 0fe61813f668b2461cb83599ad583e9c
 
x86_64:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: df36d6de99b64e8be45493bdd0ecd56b
curl-devel-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: acdbb5c5e62970e031b0b43225d9b892
 
Red Hat Enterprise Linux ES (v. 4.7.z)

SRPMS:
curl-7.12.1-11.1.el4_7.1.src.rpm
File outdated by:  RHSA-2011:0918
    MD5: b16bf683ce5596221f763da091c67075
 
IA-32:
curl-7.12.1-11.1.el4_7.1.i386.rpm     MD5: 37cf2c81883316d171d81ffae00e7387
curl-devel-7.12.1-11.1.el4_7.1.i386.rpm     MD5: f0231838cdb7455f3fa7dcb9277db17d
 
IA-64:
curl-7.12.1-11.1.el4_7.1.i386.rpm     MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.ia64.rpm     MD5: 10a6bbe097c60035055a79c10d08cb17
curl-devel-7.12.1-11.1.el4_7.1.ia64.rpm     MD5: 0fe61813f668b2461cb83599ad583e9c
 
x86_64:
curl-7.12.1-11.1.el4_7.1.i386.rpm     MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.x86_64.rpm     MD5: df36d6de99b64e8be45493bdd0ecd56b
curl-devel-7.12.1-11.1.el4_7.1.x86_64.rpm     MD5: acdbb5c5e62970e031b0b43225d9b892
 
Red Hat Enterprise Linux EUS (v. 5.3.z server)

IA-32:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 7fbd081f150909be0a78d7ea4fae2658
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
 
IA-64:
curl-7.15.5-2.1.el5_3.4.ia64.rpm
File outdated by:  RHSA-2009:1209
    MD5: 19a71d89eb9dea95634e72dc4955a12c
curl-devel-7.15.5-2.1.el5_3.4.ia64.rpm
File outdated by:  RHSA-2009:1209
    MD5: aff0d26cc28378f597971a7e6f77713b
 
PPC:
curl-7.15.5-2.1.el5_3.4.ppc.rpm
File outdated by:  RHSA-2009:1209
    MD5: 4c6661c0aac91250e50a9a23ce230428
curl-7.15.5-2.1.el5_3.4.ppc64.rpm
File outdated by:  RHSA-2009:1209
    MD5: 31dfb0b01084fdc7c36da4fe7cf3d938
curl-devel-7.15.5-2.1.el5_3.4.ppc.rpm
File outdated by:  RHSA-2009:1209
    MD5: 3b9323e458506872bb04e0dac98e9990
curl-devel-7.15.5-2.1.el5_3.4.ppc64.rpm
File outdated by:  RHSA-2009:1209
    MD5: b55c2bb81fb03467a6d8e6caab261356
 
s390x:
curl-7.15.5-2.1.el5_3.4.s390.rpm
File outdated by:  RHSA-2009:1209
    MD5: 0cdf0bf07430b073eb4d743962a5eca0
curl-7.15.5-2.1.el5_3.4.s390x.rpm
File outdated by:  RHSA-2009:1209
    MD5: 6737db10d1271c1cc5b61f068f5cd1c0
curl-devel-7.15.5-2.1.el5_3.4.s390.rpm
File outdated by:  RHSA-2009:1209
    MD5: 62ee5d8e4ef152ba1105e0574ea0d607
curl-devel-7.15.5-2.1.el5_3.4.s390x.rpm
File outdated by:  RHSA-2009:1209
    MD5: 23573d9b420845f5483bc47359a1510f
 
x86_64:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 7fbd081f150909be0a78d7ea4fae2658
curl-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2009:1209
    MD5: 89b0ba3c843c61515de1a018bd5a20c5
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
curl-devel-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2009:1209
    MD5: e105575beb56be263e540ffce481ad8b
 
Red Hat Enterprise Linux Long Life (v. 5.3 server)

IA-32:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 7fbd081f150909be0a78d7ea4fae2658
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
 
IA-64:
curl-7.15.5-2.1.el5_3.4.ia64.rpm
File outdated by:  RHSA-2009:1209
    MD5: 19a71d89eb9dea95634e72dc4955a12c
curl-devel-7.15.5-2.1.el5_3.4.ia64.rpm
File outdated by:  RHSA-2009:1209
    MD5: aff0d26cc28378f597971a7e6f77713b
 
x86_64:
curl-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 7fbd081f150909be0a78d7ea4fae2658
curl-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2009:1209
    MD5: 89b0ba3c843c61515de1a018bd5a20c5
curl-devel-7.15.5-2.1.el5_3.4.i386.rpm
File outdated by:  RHSA-2009:1209
    MD5: 3b8c485b15f0fd97c2c09f2b8cb0c370
curl-devel-7.15.5-2.1.el5_3.4.x86_64.rpm
File outdated by:  RHSA-2009:1209
    MD5: e105575beb56be263e540ffce481ad8b
 
Red Hat Enterprise Linux WS (v. 2.1)

SRPMS:
curl-7.8-3.rhel2.src.rpm     MD5: 94ca31051ac8066b1a79e1c181c25ef3
 
IA-32:
curl-7.8-3.rhel2.i386.rpm     MD5: b31822dfb5d24c2c280b88deae8937a3
curl-devel-7.8-3.rhel2.i386.rpm     MD5: 2b6cd70f53675f8cd2b3174544d0076e
 
Red Hat Enterprise Linux WS (v. 3)

SRPMS:
curl-7.10.6-9.rhel3.src.rpm
File outdated by:  RHSA-2010:0329
    MD5: 64ca6b74a65629dcdb63ad3e8a7fcf74
 
IA-32:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-devel-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: d85f84c60184477e39a8195d012e0779
 
IA-64:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-7.10.6-9.rhel3.ia64.rpm
File outdated by:  RHSA-2010:0329
    MD5: cf667b687d14475451779561549b8083
curl-devel-7.10.6-9.rhel3.ia64.rpm
File outdated by:  RHSA-2010:0329
    MD5: e9e9d30068b487eef04bfa27b0ae46a9
 
x86_64:
curl-7.10.6-9.rhel3.i386.rpm
File outdated by:  RHSA-2010:0329
    MD5: 97462f74ec6e76d94d8e9925adb4f6f9
curl-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: 2f36c5c6131f7d0a4aecee163592d0e7
curl-devel-7.10.6-9.rhel3.x86_64.rpm
File outdated by:  RHSA-2010:0329
    MD5: a89ec090434680365624e761eaecfbb9
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
curl-7.12.1-11.1.el4_7.1.src.rpm
File outdated by:  RHSA-2011:0918
    MD5: b16bf683ce5596221f763da091c67075
 
IA-32:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-devel-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: f0231838cdb7455f3fa7dcb9277db17d
 
IA-64:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.ia64.rpm
File outdated by:  RHSA-2011:0918
    MD5: 10a6bbe097c60035055a79c10d08cb17
curl-devel-7.12.1-11.1.el4_7.1.ia64.rpm
File outdated by:  RHSA-2011:0918
    MD5: 0fe61813f668b2461cb83599ad583e9c
 
x86_64:
curl-7.12.1-11.1.el4_7.1.i386.rpm
File outdated by:  RHSA-2011:0918
    MD5: 37cf2c81883316d171d81ffae00e7387
curl-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: df36d6de99b64e8be45493bdd0ecd56b
curl-devel-7.12.1-11.1.el4_7.1.x86_64.rpm
File outdated by:  RHSA-2011:0918
    MD5: acdbb5c5e62970e031b0b43225d9b892
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor

SRPMS:
curl-7.8-3.rhel2.src.rpm     MD5: 94ca31051ac8066b1a79e1c181c25ef3
 
IA-64:
curl-7.8-3.rhel2.ia64.rpm     MD5: 93159a91f6be1a0a36ed7dd11561b8e4
curl-devel-7.8-3.rhel2.ia64.rpm     MD5: 2aed89b6c4a6a89958ff84d8f643e0ea
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

485271 - CVE-2009-0037 curl: local file access via unsafe redirects


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/