-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 02 Apr 2024 20:02:10 -0300
Source: curl
Binary: curl curl-dbgsym libcurl3-gnutls libcurl3-gnutls-dbgsym libcurl3-nss libcurl3-nss-dbgsym libcurl4 libcurl4-dbgsym libcurl4-gnutls-dev libcurl4-nss-dev libcurl4-openssl-dev
Architecture: s390x
Version: 7.88.1-10+deb12u6
Distribution: bookworm
Urgency: medium
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Guilherme Puida Moreira <guilherme@puida.xyz>
Description:
 curl       - command line tool for transferring data with URL syntax
 libcurl3-gnutls - easy-to-use client-side URL transfer library (GnuTLS flavour)
 libcurl3-nss - easy-to-use client-side URL transfer library (NSS flavour)
 libcurl4   - easy-to-use client-side URL transfer library (OpenSSL flavour)
 libcurl4-gnutls-dev - development files and documentation for libcurl (GnuTLS flavour)
 libcurl4-nss-dev - development files and documentation for libcurl (NSS flavour)
 libcurl4-openssl-dev - development files and documentation for libcurl (OpenSSL flavour)
Closes: 1053643
Changes:
 curl (7.88.1-10+deb12u6) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Sergio Durigan Junior ]
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     (Closes: #1053643)
 .
   [ Guilherme Puida Moreira ]
   * Add patches to fix CVE-2024-2004 and CVE-2024-2398.
     - CVE-2024-2004: When a protocol selection parameter disables all
       protocols without adding any then the default set of protocols would
       remain in the allowed set due to an error in the logic for removing
       protocols.
     - CVE-2024-2398: When an application tells libcurl it wants to allow
       HTTP/2 server push and the amount of received headers for the push
       surpasses the maximum allowed limit (1000), libcurl aborts the server
       push and leaks the memory allocated for the previously allocated
       headers.
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     Refresh patch.
Checksums-Sha1:
 5e639a318113d6c07848285f3a38e1de5a1aa013 158472 curl-dbgsym_7.88.1-10+deb12u6_s390x.deb
 bb59848f18916a90695ffef8f61153238cad15fe 12863 curl_7.88.1-10+deb12u6_s390x-buildd.buildinfo
 bff9a21e3927e1db6c3d45af8a3669a2132e63b2 309240 curl_7.88.1-10+deb12u6_s390x.deb
 0c083b3bf2a3ef5b507dba936621bc82ec506f8b 1024460 libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_s390x.deb
 d806b7a3b272eb35b15e212b63c32d32a641c5e1 360040 libcurl3-gnutls_7.88.1-10+deb12u6_s390x.deb
 5d9298a988ee27fca66172429cf32e32674e742b 1067276 libcurl3-nss-dbgsym_7.88.1-10+deb12u6_s390x.deb
 2c2bad47e111a07078372cce317e8bb341b0c6b8 368308 libcurl3-nss_7.88.1-10+deb12u6_s390x.deb
 1d12c7377b1081f46e8b3b4cdc61a757d2fb7558 1056712 libcurl4-dbgsym_7.88.1-10+deb12u6_s390x.deb
 6fd33357d9e7823aaf842038ab48fb859abebbe4 461992 libcurl4-gnutls-dev_7.88.1-10+deb12u6_s390x.deb
 5249546b9679116627a31193ac43cf3f27f4d5ed 469356 libcurl4-nss-dev_7.88.1-10+deb12u6_s390x.deb
 15cb11a8af84d48e0bc5105f87f20d44cf80233f 466060 libcurl4-openssl-dev_7.88.1-10+deb12u6_s390x.deb
 018e8121bb536650e68efd9a4edf88fea089d22f 365068 libcurl4_7.88.1-10+deb12u6_s390x.deb
Checksums-Sha256:
 d7532f4360e70e5e11dd4ce9645320faed70d15a5f606dd1d89be40e0dd76810 158472 curl-dbgsym_7.88.1-10+deb12u6_s390x.deb
 9864737c5a37fa69dd8c41877663cdb560d98f4996afa48d7976aba08be16dc5 12863 curl_7.88.1-10+deb12u6_s390x-buildd.buildinfo
 d2c334fb514946e056e6009b4f44ac3689937f4c42d413cb66bdec62054bb236 309240 curl_7.88.1-10+deb12u6_s390x.deb
 bc6abee6a632743a8bed23493313b2324b547d20f48f3cb9b6bf6a88a2978cf9 1024460 libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_s390x.deb
 c252d1475e91fe3aa145000241c8c0dfeaf4fdc4b1a1ad7276f4b4543277f7db 360040 libcurl3-gnutls_7.88.1-10+deb12u6_s390x.deb
 a72581fa1a142c44c144659cb1ae257a1825c9774de28a2717a9723b1c572006 1067276 libcurl3-nss-dbgsym_7.88.1-10+deb12u6_s390x.deb
 85dc9d6d5c664950c9d545076e233141d460b4c093f2b3c3601dcec40684e21c 368308 libcurl3-nss_7.88.1-10+deb12u6_s390x.deb
 acf8351825fcafd3c8df101654f1a1881c5df99f4781affe9f83de5749790501 1056712 libcurl4-dbgsym_7.88.1-10+deb12u6_s390x.deb
 a1d53a874753763ad6f81b8846b47e1cac40c0d21fed2a369e788d7fa4dbf5c4 461992 libcurl4-gnutls-dev_7.88.1-10+deb12u6_s390x.deb
 0ef6460a2a68c0325edb7c7ea2d3b9d585fa135a6ca52bace87837e249ade184 469356 libcurl4-nss-dev_7.88.1-10+deb12u6_s390x.deb
 2fc58cc034e2b1ad901af6d4deee43f4b9e7eedd22a25e99a5fb772f2d47a435 466060 libcurl4-openssl-dev_7.88.1-10+deb12u6_s390x.deb
 2cb7c454e1732462fa3dba9415a9557be4aac89c37277f6aaa17b3569e77f122 365068 libcurl4_7.88.1-10+deb12u6_s390x.deb
Files:
 8f21520372c2bf9bb8e97be3b636cb3f 158472 debug optional curl-dbgsym_7.88.1-10+deb12u6_s390x.deb
 da7f8f4ac2cabb2a9465432ff3510471 12863 web optional curl_7.88.1-10+deb12u6_s390x-buildd.buildinfo
 52381951a472123221e8ab5cb0a27b66 309240 web optional curl_7.88.1-10+deb12u6_s390x.deb
 7a83748b75ab7d2e3a3c5efc9a7c85b7 1024460 debug optional libcurl3-gnutls-dbgsym_7.88.1-10+deb12u6_s390x.deb
 787e005cab452cfddfa3ba0df4beed02 360040 libs optional libcurl3-gnutls_7.88.1-10+deb12u6_s390x.deb
 7cc63f1cd33c598c01df113844ce0f63 1067276 debug optional libcurl3-nss-dbgsym_7.88.1-10+deb12u6_s390x.deb
 9ebbb4daca68ea432f94c31de17eca56 368308 libs optional libcurl3-nss_7.88.1-10+deb12u6_s390x.deb
 74e241197927a707298990d912620068 1056712 debug optional libcurl4-dbgsym_7.88.1-10+deb12u6_s390x.deb
 6890897e1e1d73d5ebe9ff8acd4d6918 461992 libdevel optional libcurl4-gnutls-dev_7.88.1-10+deb12u6_s390x.deb
 356e90f4c057adeb06d12ce2006c8623 469356 libdevel optional libcurl4-nss-dev_7.88.1-10+deb12u6_s390x.deb
 58429d9b1e75c6f950f73cb727914baf 466060 libdevel optional libcurl4-openssl-dev_7.88.1-10+deb12u6_s390x.deb
 ea6cc0a681366f5980d788392ace2b9b 365068 libs optional libcurl4_7.88.1-10+deb12u6_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=0eQk
-----END PGP SIGNATURE-----