Several security issues were fixed in curl.
Bru Rom discovered that curl incorrectly handled client certificates when resuming a TLS session. (CVE-2016-5419)
8 August 2016
A security issue affects these releases of Ubuntu and its derivatives:
Several security issues were fixed in curl.
Bru Rom discovered that curl incorrectly handled client certificates when resuming a TLS session. (CVE-2016-5419)
It was discovered that curl incorrectly handled client certificates when reusing TLS connections. (CVE-2016-5420)
Marcelo Echeverria and Fernando Muñoz discovered that curl incorrectly reused a connection struct, contrary to expectations. This issue only applied to Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2016-5421)
The problem can be corrected by updating your system to the following package versions:
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system update will make all the necessary changes.