A new update is available for Fedora Core - [SECURITY] Fedora Core 4 Update: curl-7.13.1-5.fc4. Here the announcement:
Fedora Update Notification
FEDORA-2005-1137
2005-12-12
---------------------------------------------------------------------
Product : Fedora Core 4
Name : curl
Version : 7.13.1
Release : 5.fc4
Summary : A utility for getting files from remote servers (FTP, HTTP, and others).
Description :
cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and
Dict servers, using any of the supported protocols. cURL is designed
to work without user interaction or any kind of interactivity. cURL
offers many useful capabilities, like proxy support, user
authentication, FTP upload, HTTP post, and file transfer resume.
---------------------------------------------------------------------
Update Information:
This package fixes a security buffer overflow bug in URL
authentication code of curl (CVE-2005-4077), previous patch
did not fix this problem completely.
---------------------------------------------------------------------
* Mon Dec 12 2005 Ivana Varekova <varekova@redhat.com> 7.13.1-5.fc4
- fix CVE-2005-4077 patch - previous version of patch was not
sufficient (bug 175358)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
6bf9563972cc07ffed5f95b415e3818d SRPMS/curl-7.13.1-5.fc4.src.rpm
e94684ec8fe0b1d9e9c26f3e2115df9b ppc/curl-7.13.1-5.fc4.ppc.rpm
f27d7a8234a1706d01e0f5967f65ffdc ppc/curl-devel-7.13.1-5.fc4.ppc.rpm
f6e64be03c3c7b0acab7083a415db4ee ppc/debug/curl-debuginfo-7.13.1-5.fc4.ppc.rpm
10031fe26c4ebd2465c8e46d36654dac ppc/curl-7.13.1-5.fc4.ppc64.rpm
3bf46325b302d9e607959d8fb643b848 x86_64/curl-7.13.1-5.fc4.x86_64.rpm
ac9e7cb563e020e9461b64cfefc29f4b x86_64/curl-devel-7.13.1-5.fc4.x86_64.rpm
b52ada72403372b54aa9d97be2f553e7 x86_64/debug/curl-debuginfo-7.13.1-5.fc4.x86_64.rpm
ee7edbd4508ba326e2448aa436d93cb4 x86_64/curl-7.13.1-5.fc4.i386.rpm
ee7edbd4508ba326e2448aa436d93cb4 i386/curl-7.13.1-5.fc4.i386.rpm
543716673032396b4e69329772abe80b i386/curl-devel-7.13.1-5.fc4.i386.rpm
a7fd5577910c7f0348e5f9449913c31a i386/debug/curl-debuginfo-7.13.1-5.fc4.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.