Control: tags -1 + confirmed On Thu, 2025-11-06 at 14:30 +0100, Alex wrote: > The curl package version in Debian Trixie suffers from three minor > CVEs: > > [1]: https://security-tracker.debian.org/tracker/CVE-2025-9086 > [2]: https://security-tracker.debian.org/tracker/CVE-2025-10148 > [3]: https://security-tracker.debian.org/tracker/CVE-2025-11563 > > The updated package version contains the backported upstream patches > to close those vulnerabilities and also two bug fixes for wcurl: a > man page fix and a fix to allow overriding the output file name with > --curl-options.
Please go ahead. Regards, Adam
