libcurl can in some circumstances re-use the wrong connection when asked to do an NTLM-authenticated HTTP or HTTPS request(CVE-2014-0015). The package was updated and rebuilt to have this vulnerability fixed by merging upstream patch. Reproducible: Steps to Reproduce:
Hardware: i586 => AllWhiteboard: (none) => MGA3TOO
Thanks Funda. Please check Bugzilla first :o) *** This bug has been marked as a duplicate of bug 12476 ***
Status: NEW => RESOLVEDCC: (none) => luigiwalserResolution: (none) => DUPLICATE