-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 02 Apr 2024 20:02:10 -0300
Source: curl
Binary: libcurl4-doc
Architecture: all
Version: 7.88.1-10+deb12u6
Distribution: bookworm
Urgency: medium
Maintainer: amd64 Build Daemon (x86-grnet-03) <buildd_amd64-x86-grnet-03@buildd.debian.org>
Changed-By: Guilherme Puida Moreira <guilherme@puida.xyz>
Description:
 libcurl4-doc - documentation for libcurl
Closes: 1053643
Changes:
 curl (7.88.1-10+deb12u6) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Sergio Durigan Junior ]
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     (Closes: #1053643)
 .
   [ Guilherme Puida Moreira ]
   * Add patches to fix CVE-2024-2004 and CVE-2024-2398.
     - CVE-2024-2004: When a protocol selection parameter disables all
       protocols without adding any then the default set of protocols would
       remain in the allowed set due to an error in the logic for removing
       protocols.
     - CVE-2024-2398: When an application tells libcurl it wants to allow
       HTTP/2 server push and the amount of received headers for the push
       surpasses the maximum allowed limit (1000), libcurl aborts the server
       push and leaks the memory allocated for the previously allocated
       headers.
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     Refresh patch.
Checksums-Sha1:
 a94b60b31ec92266e2b4db6a8078cb559f2afe21 9848 curl_7.88.1-10+deb12u6_all-buildd.buildinfo
 333bf27ecb22e7bb142d5bc30e827ec4eb4e5d3c 1082400 libcurl4-doc_7.88.1-10+deb12u6_all.deb
Checksums-Sha256:
 9e6046cbe38f029f1cae2d469530275df0dc720911592d59321f666a477ba18f 9848 curl_7.88.1-10+deb12u6_all-buildd.buildinfo
 509679d77610b4a74073886a2d80a5c787c16c53a8158358f313667356637107 1082400 libcurl4-doc_7.88.1-10+deb12u6_all.deb
Files:
 8e880395763498c40f68100107ebf050 9848 web optional curl_7.88.1-10+deb12u6_all-buildd.buildinfo
 4627407504d91c2d5a217b47b187f948 1082400 doc optional libcurl4-doc_7.88.1-10+deb12u6_all.deb

-----BEGIN PGP SIGNATURE-----
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=1Qj2
-----END PGP SIGNATURE-----