news 28 Posted October 27, 2008 This is a multi-part message in MIME format... ------------=_1225144512-14940-1480 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Advisory MDVA-2008:159 http://www.mandriva.com/security/ _______________________________________________________________________ Package : curl Date : October 27, 2008 Affected: 2009.0 _______________________________________________________________________ Problem Description: An idiosyncratic feature of the Turkish language is that the letter 'i' in Turkish is not the lower-case version of the letter 'I'. This issue breaks standard POSIX string case comparison on strings containing the character 'i'. This issue affected the curl package shipped with Mandriva Linux 2009, which ultimately caused it to be incapable of handling URIs of the form file:///somefile in Turkish locales. In turn, curl is used by webkit, which is used by the Mandriva Linux Control Center, ultimately resulting in the Control Center not rendering icons in its user interface when run in Turkish locales. The bug likely also has other implications for curl-based applications in Turkish locales. The fixed package includes a fix for this issue, so that curl will correctly handle file:///somefile URIs in Turkish locales. As a consequence, the Mandriva Linux Control Center now properly renders icons in Turkish locales. _______________________________________________________________________ Updated Packages: Mandriva Linux 2009.0: 12ce50a9efa13373306425c293bd06d3 2009.0/i586/curl-7.19.0-2.1mdv2009.0.i586.rpm 4500de49e3927eb980313646e63d6899 2009.0/i586/curl-examples-7.19.0-2.1mdv2009.0.i586.rpm 165e8047be2b46a312586915e3d76709 2009.0/i586/libcurl4-7.19.0-2.1mdv2009.0.i586.rpm ca80367e9ca8609f0f598a92a8acfb7d 2009.0/i586/libcurl-devel-7.19.0-2.1mdv2009.0.i586.rpm 7ebb8b79c442fc3032c6b5ecb0a38bc3 2009.0/SRPMS/curl-7.19.0-2.1mdv2009.0.src.rpm Mandriva Linux 2009.0/X86_64: 4fdc0df6333dce8141e06bb8ef54a19c 2009.0/x86_64/curl-7.19.0-2.1mdv2009.0.x86_64.rpm 10e91f4923df5fdfc03235772daf1242 2009.0/x86_64/curl-examples-7.19.0-2.1mdv2009.0.x86_64.rpm a25ac2434643c2d3025618ab05c53f37 2009.0/x86_64/lib64curl4-7.19.0-2.1mdv2009.0.x86_64.rpm ba4268fdb7255689e76bb177586a0845 2009.0/x86_64/lib64curl-devel-7.19.0-2.1mdv2009.0.x86_64.rpm 7ebb8b79c442fc3032c6b5ecb0a38bc3 2009.0/SRPMS/curl-7.19.0-2.1mdv2009.0.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFJBg55mqjQ0CJFipgRAmEtAKDagd78Vej5S0wDd4B/sNOqmPdx1ACfc7Je OifrVoohW75J5Xb5+yQgqHA= =HYGA -----END PGP SIGNATURE----- ------------=_1225144512-14940-1480 Content-Type: text/plain; name="message-footer.txt" Content-Disposition: inline; filename="message-footer.txt" Content-Transfer-Encoding: 8bit To unsubscribe, send a email to sympa ( -at -) mandrivalinux.org with this subject : unsubscribe security-announce _______________________________________________________ Want to buy your Pack or Services from Mandriva? Go to http://www.mandrivastore.com Join the Club : http://www.mandrivaclub.com _______________________________________________________ ------------=_1225144512-14940-1480-- Share this post Link to post
