RHSA-2014:0561 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: curl security and bug fix update

Type/Severity

Security Advisory: Moderate

Topic

Updated curl packages that fix two security issues and several bugs are now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having Moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

Description

cURL provides the libcurl library and a command line tool for downloading
files from servers using various protocols, including HTTP, FTP, and LDAP.

It was found that libcurl could incorrectly reuse existing connections for
requests that should have used different or no authentication credentials,
when using one of the following protocols: HTTP(S) with NTLM
authentication, LDAP(S), SCP, or SFTP. If an application using the libcurl
library connected to a remote server with certain authentication
credentials, this flaw could cause other requests to use those same
credentials. (CVE-2014-0015, CVE-2014-0138)

Red Hat would like to thank the cURL project for reporting these issues.
Upstream acknowledges Paras Sethia as the original reporter of
CVE-2014-0015 and Yehezkel Horowitz for discovering the security impact of
this issue, and Steve Holme as the original reporter of CVE-2014-0138.

This update also fixes the following bugs:

Previously, the libcurl library was closing a network socket without
first terminating the SSL connection using the socket. This resulted in a
write after close and consequent leakage of memory dynamically allocated by
the SSL library. An upstream patch has been applied on libcurl to fix this
bug. As a result, the write after close no longer happens, and the SSL
library no longer leaks memory. (BZ#1092479)
Previously, the libcurl library did not implement a non-blocking SSL
handshake, which negatively affected performance of applications based on
libcurl's multi API. To fix this bug, the non-blocking SSL handshake has
been implemented by libcurl. With this update, libcurl's multi API
immediately returns the control back to the application whenever it cannot
read/write data from/to the underlying network socket. (BZ#1092480)
Previously, the curl package could not be rebuilt from sources due to an
expired cookie in the upstream test-suite, which runs during the build. An
upstream patch has been applied to postpone the expiration date of the
cookie, which makes it possible to rebuild the package from sources again.
(BZ#1092486)
Previously, the libcurl library attempted to authenticate using Kerberos
whenever such an authentication method was offered by the server. This
caused problems when the server offered multiple authentication methods and
Kerberos was not the selected one. An upstream patch has been applied on
libcurl to fix this bug. Now libcurl no longer uses Kerberos authentication
if another authentication method is selected. (BZ#1096797)

All curl users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. All running
applications that use libcurl have to be restarted for this update to
take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Affected Products

Red Hat Enterprise Linux Server 6 x86_64
Red Hat Enterprise Linux Server 6 i386
Red Hat Enterprise Linux Server - Extended Update Support 6.5 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 6.5 i386
Red Hat Enterprise Linux Server - AUS 6.5 x86_64
Red Hat Enterprise Linux Workstation 6 x86_64
Red Hat Enterprise Linux Workstation 6 i386
Red Hat Enterprise Linux Desktop 6 x86_64
Red Hat Enterprise Linux Desktop 6 i386
Red Hat Enterprise Linux for IBM z Systems 6 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 6.5 s390x
Red Hat Enterprise Linux for Power, big endian 6 ppc64
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 6.5 ppc64
Red Hat Enterprise Linux for Scientific Computing 6 x86_64
Red Hat Enterprise Linux Server from RHUI 6 x86_64
Red Hat Enterprise Linux Server from RHUI 6 i386
Red Hat Enterprise Linux Server - Extended Update Support from RHUI 6.5 x86_64
Red Hat Enterprise Linux Server - Extended Update Support from RHUI 6.5 i386
Red Hat Enterprise Linux EUS Compute Node 6.5 x86_64
Red Hat Enterprise Linux Server - TUS 6.5 x86_64

Fixes

BZ - 1053903 - CVE-2014-0015 curl: re-use of wrong HTTP NTLM connection in libcurl
BZ - 1079148 - CVE-2014-0138 curl: wrong re-use of connections in libcurl
BZ - 1092486 - problem with building curl package
BZ - 1096797 - RHEL-6 libcurl fails when using digest auth and have multiple auth options

CVEs

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 6

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144
i386
curl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 7c9597a8f08a2b8f54261464b3020e153d8dd26496bc497e4b51a3b8191e5215
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782

Red Hat Enterprise Linux Server - Extended Update Support 6.5

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144
i386
curl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 7c9597a8f08a2b8f54261464b3020e153d8dd26496bc497e4b51a3b8191e5215
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782

Red Hat Enterprise Linux Workstation 6

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144
i386
curl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 7c9597a8f08a2b8f54261464b3020e153d8dd26496bc497e4b51a3b8191e5215
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782

Red Hat Enterprise Linux Desktop 6

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144
i386
curl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 7c9597a8f08a2b8f54261464b3020e153d8dd26496bc497e4b51a3b8191e5215
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782

Red Hat Enterprise Linux for IBM z Systems 6

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
s390x
curl-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: efaecb118eb9cfb17647d80c6d05bc0504724cdbd952227d021287c07ff2515d
curl-debuginfo-7.19.7-37.el6_5.3.s390.rpm	SHA-256: 0aa18c7b279cbb9791c6b8a04dd789fada134b1e4ab2227fb897c717a9c42c78
curl-debuginfo-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: 3ef87ab85ff5098e4f2348c74a12501adf15c830e31f68c4946afd875a22cbe9
libcurl-7.19.7-37.el6_5.3.s390.rpm	SHA-256: 0378c3bc054d3449fb35a2d5642c6349628bfa025fe8da6d7a8e8d35f15f2e54
libcurl-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: 675d689af683957387da32c41bace965d9dbda4632164a15cb12754e538d3bc4
libcurl-devel-7.19.7-37.el6_5.3.s390.rpm	SHA-256: 24ba53fa0d0b726acaaded8fc1cd79228f21959d3567053aa973501b30628690
libcurl-devel-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: ad1ad9da7d2b624ada1604f291ba3b6584b14ad0c3c7bcea305a17ed58582ad2

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 6.5

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
s390x
curl-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: efaecb118eb9cfb17647d80c6d05bc0504724cdbd952227d021287c07ff2515d
curl-debuginfo-7.19.7-37.el6_5.3.s390.rpm	SHA-256: 0aa18c7b279cbb9791c6b8a04dd789fada134b1e4ab2227fb897c717a9c42c78
curl-debuginfo-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: 3ef87ab85ff5098e4f2348c74a12501adf15c830e31f68c4946afd875a22cbe9
libcurl-7.19.7-37.el6_5.3.s390.rpm	SHA-256: 0378c3bc054d3449fb35a2d5642c6349628bfa025fe8da6d7a8e8d35f15f2e54
libcurl-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: 675d689af683957387da32c41bace965d9dbda4632164a15cb12754e538d3bc4
libcurl-devel-7.19.7-37.el6_5.3.s390.rpm	SHA-256: 24ba53fa0d0b726acaaded8fc1cd79228f21959d3567053aa973501b30628690
libcurl-devel-7.19.7-37.el6_5.3.s390x.rpm	SHA-256: ad1ad9da7d2b624ada1604f291ba3b6584b14ad0c3c7bcea305a17ed58582ad2

Red Hat Enterprise Linux for Power, big endian 6

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
ppc64
curl-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: 7bf6c47e005176c88b79c27670ac28d07f59588043538231e4de49d0f86c3f7b
curl-debuginfo-7.19.7-37.el6_5.3.ppc.rpm	SHA-256: 7af11986d1215448d8724b559d121af64535e0157ac4003ef5fac0c9e94baaab
curl-debuginfo-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: bbba776f4ac04a91e66c604e75f36d9acc706d382a679aae8d376884ea95986e
libcurl-7.19.7-37.el6_5.3.ppc.rpm	SHA-256: 6ec482feb0dbdd3af94228769be4f372d3586cf73dc221bdac58a47503502c52
libcurl-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: a79b4a0d58c89d02cbf5d3d16487dc1e2323cac3cc92de3a34127b8a0b8b2f29
libcurl-devel-7.19.7-37.el6_5.3.ppc.rpm	SHA-256: fff1d09dc3b008e8865661fecd66c10cb9ba4641533348ace5394cefba39d307
libcurl-devel-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: 99924a6aa33849e0ddeb449f62d1e242ec5d13dc60e8da41bf9c8615063c0d98

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 6.5

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
ppc64
curl-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: 7bf6c47e005176c88b79c27670ac28d07f59588043538231e4de49d0f86c3f7b
curl-debuginfo-7.19.7-37.el6_5.3.ppc.rpm	SHA-256: 7af11986d1215448d8724b559d121af64535e0157ac4003ef5fac0c9e94baaab
curl-debuginfo-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: bbba776f4ac04a91e66c604e75f36d9acc706d382a679aae8d376884ea95986e
libcurl-7.19.7-37.el6_5.3.ppc.rpm	SHA-256: 6ec482feb0dbdd3af94228769be4f372d3586cf73dc221bdac58a47503502c52
libcurl-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: a79b4a0d58c89d02cbf5d3d16487dc1e2323cac3cc92de3a34127b8a0b8b2f29
libcurl-devel-7.19.7-37.el6_5.3.ppc.rpm	SHA-256: fff1d09dc3b008e8865661fecd66c10cb9ba4641533348ace5394cefba39d307
libcurl-devel-7.19.7-37.el6_5.3.ppc64.rpm	SHA-256: 99924a6aa33849e0ddeb449f62d1e242ec5d13dc60e8da41bf9c8615063c0d98

Red Hat Enterprise Linux for Scientific Computing 6

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144

Red Hat Enterprise Linux Server from RHUI 6

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144
i386
curl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 7c9597a8f08a2b8f54261464b3020e153d8dd26496bc497e4b51a3b8191e5215
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782

Red Hat Enterprise Linux Server - Extended Update Support from RHUI 6.5

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144
i386
curl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 7c9597a8f08a2b8f54261464b3020e153d8dd26496bc497e4b51a3b8191e5215
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782

Red Hat Enterprise Linux EUS Compute Node 6.5

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144

Red Hat Enterprise Linux Server - AUS 6.5

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144

Red Hat Enterprise Linux Server - TUS 6.5

SRPM
curl-7.19.7-37.el6_5.3.src.rpm	SHA-256: e19a2124dbe688fa92d41a25c7aa92063928f3323e6717cab3551a6c655bef10
x86_64
curl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 0b8dfcaeba62084ac0a9c552f8832b9ec5766c548a942e98ebe8c2317e2249e5
curl-debuginfo-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 58b2d6c5f5f8e77b41cd3c9a30625002a493faa17cd43d16e160a2dc790581be
curl-debuginfo-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 8ba7131ea9601f1e679cbb46511dc3cf5dd8b6cdb50eb48253c8218e3088bf86
libcurl-7.19.7-37.el6_5.3.i686.rpm	SHA-256: 5931b699e9707d5d76f3cf13965b04afe336e0e2e6b223225fb3d9e2d0d8ae7a
libcurl-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 64958ce924df989bb2e7527d3b13e2fe180871511835ffd38eafc513159bbf8e
libcurl-devel-7.19.7-37.el6_5.3.i686.rpm	SHA-256: c743cfeec8047521195591238f9872aa204a0f925a6314fa09bae94139903782
libcurl-devel-7.19.7-37.el6_5.3.x86_64.rpm	SHA-256: 7d18d5a9b446cb3240c56ffbc8e0a7476906b2020d4c330d138b01f9567dc144

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.