Fedora 22: mingw-curl Security Update 2015-6864
Summary
cURL is a tool for getting files from HTTP, FTP, FILE, LDAP, LDAPS,
DICT, TELNET and TFTP servers, using any of the supported protocols.
cURL is designed to work without user interaction or any kind of
interactivity. cURL offers many useful capabilities, like proxy
support, user authentication, FTP upload, HTTP post, and file transfer
resume.
This is the MinGW cross-compiled Windows library.
Update Information:
Update to 7.42.0 which fixes various CVE's
Change Log
References
[ 1 ] Bug #1180063 - CVE-2014-8150 mingw-curl: curl: URL request injection vulnerability in parseurlandfillconn() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1180063 [ 2 ] Bug #1214795 - CVE-2015-3143 CVE-2015-3148 CVE-2015-3145 CVE-2015-3144 mingw-curl: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1214795
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update mingw-curl' at the command line. For more information, refer to "Managing Software with yum", available at .