Errata overview
Errata ID 339
Date 2015-06-17
Source package curl
Fixed in version 7.21.0-7.53.201506031709
Description 
These vulnerabilities have been fixed in curl:
* Information leak in curl_easy_duphandle() (CVE-2014-3707)
* Re-using authenticated connection when unauthenticated (CVE-2015-3143)
* Negotiate not treated as connection-oriented (CVE-2015-3148)
* Fix URL request injection (CVE-2014-8150)
Additional notes
CVE ID CVE-2014-3707
CVE-2014-8150
CVE-2015-3143
CVE-2015-3148
UCS Bug number #36468