Bug#1120262: trixie-pu: package curl/8.14.1-2+deb13u1

To: Alex <alex@puer-robustus.eu>, 1120262@bugs.debian.org
Subject: Bug#1120262: trixie-pu: package curl/8.14.1-2+deb13u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Thu, 06 Nov 2025 19:11:06 +0000
Message-id: <[🔎] d5835574f1db9d5192bb2d52f12ea8a38454ced8.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1120262@bugs.debian.org
In-reply-to: <[🔎] 87bjlfs2yn.fsf@t400deb>
References: <[🔎] 87bjlfs2yn.fsf@t400deb> <[🔎] 87bjlfs2yn.fsf@t400deb>

Control: tags -1 + confirmed

On Thu, 2025-11-06 at 14:30 +0100, Alex wrote:
> The curl package version in Debian Trixie suffers from three minor
> CVEs:
> 
> [1]: https://security-tracker.debian.org/tracker/CVE-2025-9086
> [2]: https://security-tracker.debian.org/tracker/CVE-2025-10148
> [3]: https://security-tracker.debian.org/tracker/CVE-2025-11563
> 
> The updated package version contains the backported upstream patches
> to close those vulnerabilities and also two bug fixes for wcurl: a
> man page fix and a fix to allow overriding the output file name with
> --curl-options.

Please go ahead.

Regards,

Adam

Reply to:

References:
- Bug#1120262: trixie-pu: package curl/8.14.1-2+deb13u1
  - From: Alex <alex@puer-robustus.eu>

Prev by Date: Processed: Re: Bug#1120145: trixie-pu: package 7zip-rar/25.00-1+deb13u1
Next by Date: Processed: Re: Bug#1120262: trixie-pu: package curl/8.14.1-2+deb13u1
Previous by thread: Processed: trixie-pu: package curl/8.14.1-2+deb13u1
Next by thread: Processed: Re: Bug#1120262: trixie-pu: package curl/8.14.1-2+deb13u1
Index(es):
- Date
- Thread