RHSA-2009:1209 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: curl security update

Type/Severity

Security Advisory: Moderate

Topic

Updated curl packages that fix security issues are now available for Red
Hat Enterprise Linux 3, 4, and 5.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

Description

cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict
servers, using any of the supported protocols. cURL is designed to work
without user interaction or any kind of interactivity.

Scott Cantor reported that cURL is affected by the previously published
"null prefix attack", caused by incorrect handling of NULL characters in
X.509 certificates. If an attacker is able to get a carefully-crafted
certificate signed by a trusted Certificate Authority, the attacker could
use the certificate during a man-in-the-middle attack and potentially
confuse cURL into accepting it by mistake. (CVE-2009-2417)

cURL users should upgrade to these updated packages, which contain a
backported patch to correct these issues. All running applications using
libcurl must be restarted for the update to take effect.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

Red Hat Enterprise Linux Server 5 x86_64
Red Hat Enterprise Linux Server 5 ia64
Red Hat Enterprise Linux Server 5 i386
Red Hat Enterprise Linux Server 4 x86_64
Red Hat Enterprise Linux Server 4 ia64
Red Hat Enterprise Linux Server 4 i386
Red Hat Enterprise Linux Server 3 x86_64
Red Hat Enterprise Linux Server 3 ia64
Red Hat Enterprise Linux Server 3 i386
Red Hat Enterprise Linux Server - Extended Update Support 5.3 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 5.3 ia64
Red Hat Enterprise Linux Server - Extended Update Support 5.3 i386
Red Hat Enterprise Linux Server - Extended Update Support 4.8 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 4.8 ia64
Red Hat Enterprise Linux Server - Extended Update Support 4.8 i386
Red Hat Enterprise Linux Server - AUS 5.3 x86_64
Red Hat Enterprise Linux Server - AUS 5.3 ia64
Red Hat Enterprise Linux Server - AUS 5.3 i386
Red Hat Enterprise Linux Workstation 5 x86_64
Red Hat Enterprise Linux Workstation 5 i386
Red Hat Enterprise Linux Workstation 4 x86_64
Red Hat Enterprise Linux Workstation 4 ia64
Red Hat Enterprise Linux Workstation 4 i386
Red Hat Enterprise Linux Workstation 3 x86_64
Red Hat Enterprise Linux Workstation 3 ia64
Red Hat Enterprise Linux Workstation 3 i386
Red Hat Enterprise Linux Desktop 5 x86_64
Red Hat Enterprise Linux Desktop 5 i386
Red Hat Enterprise Linux Desktop 4 x86_64
Red Hat Enterprise Linux Desktop 4 i386
Red Hat Enterprise Linux Desktop 3 x86_64
Red Hat Enterprise Linux Desktop 3 i386
Red Hat Enterprise Linux for IBM z Systems 5 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390
Red Hat Enterprise Linux for IBM z Systems 3 s390x
Red Hat Enterprise Linux for IBM z Systems 3 s390
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.3 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390
Red Hat Enterprise Linux for Power, big endian 5 ppc
Red Hat Enterprise Linux for Power, big endian 4 ppc
Red Hat Enterprise Linux for Power, big endian 3 ppc
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.3 ppc
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8 ppc
Red Hat Enterprise Linux Server from RHUI 5 x86_64
Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

BZ - 516181 - CVE-2009-2417 curl: incorrect verification of SSL certificate with NUL in name

CVEs

CVE-2009-2417

References

http://www.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 5

SRPM
curl-7.15.5-2.1.el5_3.5.src.rpm	SHA-256: bff9e4e58862f5b7d260435eb4b5f5ab93ceb3ff285c6b48a988f779a5775731
x86_64
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb
curl-7.15.5-2.1.el5_3.5.x86_64.rpm	SHA-256: 282b99563932fb8164a8e6e4af4eb4f08e1851b16f9f02f030f3e0b1974e2960
curl-devel-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: 1140e3b6e4356e3fe2dd634a5b6b2e38ff08de143c5182030b8c345c38374ff3
curl-devel-7.15.5-2.1.el5_3.5.x86_64.rpm	SHA-256: ccc7f0d7db1120dd9fa123b522024c937f9c3bf4d329166b569d6e23d58af26b
ia64
curl-7.15.5-2.1.el5_3.5.ia64.rpm	SHA-256: 85088623a24be16fe419a535b48c939ef7bdbcf849f1f4e3b331b0671ef2fe80
curl-devel-7.15.5-2.1.el5_3.5.ia64.rpm	SHA-256: f2849f6a846c420d7ffd8fda73862b95289308cd7834bad61466fa71fb4121bb
i386
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb
curl-devel-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: 1140e3b6e4356e3fe2dd634a5b6b2e38ff08de143c5182030b8c345c38374ff3

Red Hat Enterprise Linux Server 4

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
x86_64
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 3061523a39f4e0e2ee31c660884f1beff3ce0cb2744843d75085870dc566db59
curl-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 3061523a39f4e0e2ee31c660884f1beff3ce0cb2744843d75085870dc566db59
curl-devel-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 167c3726cac277298a8d3a0ba4b5f92a60c38a485077fb910df4c295133d37b6
curl-devel-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 167c3726cac277298a8d3a0ba4b5f92a60c38a485077fb910df4c295133d37b6
ia64
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: c8e16aee1d57f9d9e1e47d66f00c7d037aea77f5f0aff41b8e2eee4aff445ca7
curl-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: c8e16aee1d57f9d9e1e47d66f00c7d037aea77f5f0aff41b8e2eee4aff445ca7
curl-devel-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: a1aa14ebb7b4c8c4b5a46b5528d128403f24b5472e0c42e1d1e0aba12802ff88
curl-devel-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: a1aa14ebb7b4c8c4b5a46b5528d128403f24b5472e0c42e1d1e0aba12802ff88
i386
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-devel-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 5c0fee96405bc8052f10711731819dddfa3a4a57f8aefdd7620fcc85b78f855f
curl-devel-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 5c0fee96405bc8052f10711731819dddfa3a4a57f8aefdd7620fcc85b78f855f

Red Hat Enterprise Linux Server - Extended Update Support 4.8

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
x86_64
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 3061523a39f4e0e2ee31c660884f1beff3ce0cb2744843d75085870dc566db59
curl-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 3061523a39f4e0e2ee31c660884f1beff3ce0cb2744843d75085870dc566db59
curl-devel-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 167c3726cac277298a8d3a0ba4b5f92a60c38a485077fb910df4c295133d37b6
curl-devel-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 167c3726cac277298a8d3a0ba4b5f92a60c38a485077fb910df4c295133d37b6
ia64
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: c8e16aee1d57f9d9e1e47d66f00c7d037aea77f5f0aff41b8e2eee4aff445ca7
curl-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: c8e16aee1d57f9d9e1e47d66f00c7d037aea77f5f0aff41b8e2eee4aff445ca7
curl-devel-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: a1aa14ebb7b4c8c4b5a46b5528d128403f24b5472e0c42e1d1e0aba12802ff88
curl-devel-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: a1aa14ebb7b4c8c4b5a46b5528d128403f24b5472e0c42e1d1e0aba12802ff88
i386
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-devel-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 5c0fee96405bc8052f10711731819dddfa3a4a57f8aefdd7620fcc85b78f855f
curl-devel-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 5c0fee96405bc8052f10711731819dddfa3a4a57f8aefdd7620fcc85b78f855f

Red Hat Enterprise Linux Workstation 5

SRPM
curl-7.15.5-2.1.el5_3.5.src.rpm	SHA-256: bff9e4e58862f5b7d260435eb4b5f5ab93ceb3ff285c6b48a988f779a5775731
x86_64
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb
curl-7.15.5-2.1.el5_3.5.x86_64.rpm	SHA-256: 282b99563932fb8164a8e6e4af4eb4f08e1851b16f9f02f030f3e0b1974e2960
curl-devel-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: 1140e3b6e4356e3fe2dd634a5b6b2e38ff08de143c5182030b8c345c38374ff3
curl-devel-7.15.5-2.1.el5_3.5.x86_64.rpm	SHA-256: ccc7f0d7db1120dd9fa123b522024c937f9c3bf4d329166b569d6e23d58af26b
i386
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb
curl-devel-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: 1140e3b6e4356e3fe2dd634a5b6b2e38ff08de143c5182030b8c345c38374ff3

Red Hat Enterprise Linux Workstation 4

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
x86_64
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 3061523a39f4e0e2ee31c660884f1beff3ce0cb2744843d75085870dc566db59
curl-devel-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 167c3726cac277298a8d3a0ba4b5f92a60c38a485077fb910df4c295133d37b6
ia64
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: c8e16aee1d57f9d9e1e47d66f00c7d037aea77f5f0aff41b8e2eee4aff445ca7
curl-devel-7.12.1-11.1.el4_8.1.ia64.rpm	SHA-256: a1aa14ebb7b4c8c4b5a46b5528d128403f24b5472e0c42e1d1e0aba12802ff88
i386
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-devel-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 5c0fee96405bc8052f10711731819dddfa3a4a57f8aefdd7620fcc85b78f855f

Red Hat Enterprise Linux Desktop 5

SRPM
curl-7.15.5-2.1.el5_3.5.src.rpm	SHA-256: bff9e4e58862f5b7d260435eb4b5f5ab93ceb3ff285c6b48a988f779a5775731
x86_64
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb
curl-7.15.5-2.1.el5_3.5.x86_64.rpm	SHA-256: 282b99563932fb8164a8e6e4af4eb4f08e1851b16f9f02f030f3e0b1974e2960
i386
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb

Red Hat Enterprise Linux Desktop 4

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
x86_64
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 3061523a39f4e0e2ee31c660884f1beff3ce0cb2744843d75085870dc566db59
curl-devel-7.12.1-11.1.el4_8.1.x86_64.rpm	SHA-256: 167c3726cac277298a8d3a0ba4b5f92a60c38a485077fb910df4c295133d37b6
i386
curl-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 17042c1419d64c292b50a3438a81df835c318478267cd3d9f3414e7bc6900332
curl-devel-7.12.1-11.1.el4_8.1.i386.rpm	SHA-256: 5c0fee96405bc8052f10711731819dddfa3a4a57f8aefdd7620fcc85b78f855f

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
curl-7.15.5-2.1.el5_3.5.src.rpm	SHA-256: bff9e4e58862f5b7d260435eb4b5f5ab93ceb3ff285c6b48a988f779a5775731
s390x
curl-7.15.5-2.1.el5_3.5.s390.rpm	SHA-256: 02039eba216c6dc208370f71ee029cd0644d689c2c1a14c16e62560724acb17c
curl-7.15.5-2.1.el5_3.5.s390x.rpm	SHA-256: ed4efd3bd53d2d2d5ea14d980637f2912f6bf483d89a9a7d7bc62a8a8f55b030
curl-devel-7.15.5-2.1.el5_3.5.s390.rpm	SHA-256: cc767fd2d641274de90a281ad6cd001fcf4fcc4154f30cae5dbdcb3559d961d5
curl-devel-7.15.5-2.1.el5_3.5.s390x.rpm	SHA-256: 12daea53a71e96d1d32a31ec74733dfa1c390c5652c58410bb4ccf7c2c7e3f6e

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
s390x
curl-7.12.1-11.1.el4_8.1.s390.rpm	SHA-256: 68103ae290e81cc3e86c4a341180b0c525ab0a0dce537475966a317e143e8835
curl-7.12.1-11.1.el4_8.1.s390x.rpm	SHA-256: 793e3bc9c0af4d91c3bb83b362e889a8084c36ce7b4dc3c6950150c18d8f100b
curl-devel-7.12.1-11.1.el4_8.1.s390x.rpm	SHA-256: 06f37ce95352b19fe714829d9e2968081b91c4ae1b733b8fd4d4caf34858de13
s390
curl-7.12.1-11.1.el4_8.1.s390.rpm	SHA-256: 68103ae290e81cc3e86c4a341180b0c525ab0a0dce537475966a317e143e8835
curl-devel-7.12.1-11.1.el4_8.1.s390.rpm	SHA-256: b30cf9e5ee5ed042b73e7cdc6fe74392f1f36d57a04f6264cd074c8aa0aa7c01

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
s390x
curl-7.12.1-11.1.el4_8.1.s390.rpm	SHA-256: 68103ae290e81cc3e86c4a341180b0c525ab0a0dce537475966a317e143e8835
curl-7.12.1-11.1.el4_8.1.s390x.rpm	SHA-256: 793e3bc9c0af4d91c3bb83b362e889a8084c36ce7b4dc3c6950150c18d8f100b
curl-devel-7.12.1-11.1.el4_8.1.s390x.rpm	SHA-256: 06f37ce95352b19fe714829d9e2968081b91c4ae1b733b8fd4d4caf34858de13
s390
curl-7.12.1-11.1.el4_8.1.s390.rpm	SHA-256: 68103ae290e81cc3e86c4a341180b0c525ab0a0dce537475966a317e143e8835
curl-devel-7.12.1-11.1.el4_8.1.s390.rpm	SHA-256: b30cf9e5ee5ed042b73e7cdc6fe74392f1f36d57a04f6264cd074c8aa0aa7c01

Red Hat Enterprise Linux for Power, big endian 5

SRPM
curl-7.15.5-2.1.el5_3.5.src.rpm	SHA-256: bff9e4e58862f5b7d260435eb4b5f5ab93ceb3ff285c6b48a988f779a5775731
ppc
curl-7.15.5-2.1.el5_3.5.ppc.rpm	SHA-256: 88bc5448b788c2d51b275941777326fcdefa447ab5f1513342aa7ee01208eef0
curl-7.15.5-2.1.el5_3.5.ppc64.rpm	SHA-256: bd380d87309468504e73ef063fa29f4696ff8f4190cf0a34484295512a382201
curl-devel-7.15.5-2.1.el5_3.5.ppc.rpm	SHA-256: aec6f5288677f2ad2ce80179f70b8a51b72bfcb488b745e54e421eb6acc1ad5e
curl-devel-7.15.5-2.1.el5_3.5.ppc64.rpm	SHA-256: 73b7c4c082c764fdac3b108a7a0e6b2f11f135c6ffba648e78196a74b0a58389

Red Hat Enterprise Linux for Power, big endian 4

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
ppc
curl-7.12.1-11.1.el4_8.1.ppc.rpm	SHA-256: 149678297f14da40a441688dc04c9f96457e7b123f8812f2f2348204e02505f0
curl-7.12.1-11.1.el4_8.1.ppc64.rpm	SHA-256: d045a4058ef2b40ec0156614d4b95043d1c06180873c60f8d67a229aaba260f6
curl-devel-7.12.1-11.1.el4_8.1.ppc.rpm	SHA-256: 7000844bf9835b5f4a2da880d899b3fd70f20519a959fd739ab7f5065c090e42

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8

SRPM
curl-7.12.1-11.1.el4_8.1.src.rpm	SHA-256: d78f592b6433a77b42f7ace591c1736909bcdcfc2d3ba34da6413afc13c400fd
ppc
curl-7.12.1-11.1.el4_8.1.ppc.rpm	SHA-256: 149678297f14da40a441688dc04c9f96457e7b123f8812f2f2348204e02505f0
curl-7.12.1-11.1.el4_8.1.ppc64.rpm	SHA-256: d045a4058ef2b40ec0156614d4b95043d1c06180873c60f8d67a229aaba260f6
curl-devel-7.12.1-11.1.el4_8.1.ppc.rpm	SHA-256: 7000844bf9835b5f4a2da880d899b3fd70f20519a959fd739ab7f5065c090e42

Red Hat Enterprise Linux Server from RHUI 5

SRPM
curl-7.15.5-2.1.el5_3.5.src.rpm	SHA-256: bff9e4e58862f5b7d260435eb4b5f5ab93ceb3ff285c6b48a988f779a5775731
x86_64
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb
curl-7.15.5-2.1.el5_3.5.x86_64.rpm	SHA-256: 282b99563932fb8164a8e6e4af4eb4f08e1851b16f9f02f030f3e0b1974e2960
curl-devel-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: 1140e3b6e4356e3fe2dd634a5b6b2e38ff08de143c5182030b8c345c38374ff3
curl-devel-7.15.5-2.1.el5_3.5.x86_64.rpm	SHA-256: ccc7f0d7db1120dd9fa123b522024c937f9c3bf4d329166b569d6e23d58af26b
i386
curl-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: ce965571be27c3d7b84eb0a95a7b08c0351d203e4d03dec980ec0b6d83f434eb
curl-devel-7.15.5-2.1.el5_3.5.i386.rpm	SHA-256: 1140e3b6e4356e3fe2dd634a5b6b2e38ff08de143c5182030b8c345c38374ff3

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.