File _patchinfo of Package patchinfo

<patchinfo>
  <issue id="927556" tracker="bnc">VUL-0: CVE-2015-3143: curl: Re-using authenticated connection when unauthenticated</issue>
  <issue id="927607" tracker="bnc">VUL-0: CVE-2015-3145: curl: cookie parser out of boundary memory access</issue>
  <issue id="927608" tracker="bnc">VUL-0: CVE-2015-3144: curl: host name out of boundary memory access</issue>
  <issue id="927746" tracker="bnc">VUL-0: CVE-2015-3148: curl: Negotiate not treated as connection-oriented</issue>
  <issue id="CVE-2015-3143" tracker="cve" />
  <issue id="CVE-2015-3148" tracker="cve" />
  <issue id="CVE-2015-3145" tracker="cve" />
  <issue id="CVE-2015-3144" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>vitezslav_cizek</packager>
  <description>curl was updated to fix four security issues.

The following vulnerabilities were fixed:

* CVE-2015-3143: curl could re-use NTML authenticateds connections
* CVE-2015-3144: curl could access memory out of bounds with zero length host names
* CVE-2015-3145: curl cookie parser could access memory out of boundary
* CVE-2015-3148: curl could treat Negotiate as not connection-oriented
</description>
  <summary>Security update for curl</summary>
</patchinfo>