Ubuntu 2167-1: curl vulnerabilities
Summary
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 13.10: libcurl3 7.32.0-1ubuntu1.4 libcurl3-gnutls 7.32.0-1ubuntu1.4 libcurl3-nss 7.32.0-1ubuntu1.4 Ubuntu 12.10: libcurl3 7.27.0-1ubuntu1.9 libcurl3-gnutls 7.27.0-1ubuntu1.9 libcurl3-nss 7.27.0-1ubuntu1.9 Ubuntu 12.04 LTS: libcurl3 7.22.0-3ubuntu4.8 libcurl3-gnutls 7.22.0-3ubuntu4.8 libcurl3-nss 7.22.0-3ubuntu4.8 Ubuntu 10.04 LTS: libcurl3 7.19.7-1ubuntu1.7 libcurl3-gnutls 7.19.7-1ubuntu1.7 In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-2167-1
CVE-2014-0138, CVE-2014-0139
Package Information
https://launchpad.net/ubuntu/+source/curl/7.32.0-1ubuntu1.4 https://launchpad.net/ubuntu/+source/curl/7.27.0-1ubuntu1.9 https://launchpad.net/ubuntu/+source/curl/7.22.0-3ubuntu4.8 https://launchpad.net/ubuntu/+source/curl/7.19.7-1ubuntu1.7