Gentoo Linux Security Advisory 201701-47 - Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. Versions less than 7.52.1 are affected.
ed17dde2328ade9790f91afaff126cf8be5cf927530ff9055acf129e816be470
Slackware Security Advisory - New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue.
ca2549f2bbe98b0173e2b937737135325fb0aeca5d53b29dd51a9d864253fceb
Ubuntu Security Notice 2882-1 - Isaac Boukris discovered that curl could incorrectly re-use NTLM proxy credentials when subsequently connecting to the same host.
202f0ab95ab315c80b438c9593be5edd48993ea7253c35de09ef333b8372aae6
Debian Linux Security Advisory 3455-1 - Isaac Boukris discovered that cURL, an URL transfer library, reused NTLM-authenticated proxy connections without properly making sure that the connection was authenticated with the same credentials as set for the new transfer. This could lead to HTTP requests being sent over the connection authenticated as a different user.
3620e17695b64ca3c1d71e402b5865252838bb7f40fb0095351f1bce3684e807