[CLSA-2023:1685378325] curl: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2023-05-29
Description:
- CVE-2022-43552: smb/telnet: do not free the protocol struct in *_done() - CVE-2022-35252: cookie: reject cookies with "control bytes"
Updated packages:
  • curl-7.61.1-22.el8.tuxcare.els9.x86_64.rpm
    sha:96fbb8738085a474f1195b9a4ffe8df62054dbba
  • curl-minimal-7.61.1-22.el8.tuxcare.els9.x86_64.rpm
    sha:64696bed461d935ecaf6de1a1a5d8f367ad8af64
  • libcurl-7.61.1-22.el8.tuxcare.els9.i686.rpm
    sha:022681388a844be60462e25aba8a21c1c94a5c9d
  • libcurl-7.61.1-22.el8.tuxcare.els9.x86_64.rpm
    sha:02965f341e69a14a08cd436677bf3fcb5144854c
  • libcurl-devel-7.61.1-22.el8.tuxcare.els9.i686.rpm
    sha:ddeb59be39feb7e6700f4f737a9848618f8654f8
  • libcurl-devel-7.61.1-22.el8.tuxcare.els9.x86_64.rpm
    sha:2c00cbfead58731191e62c3f7220000e3a5a134c
  • libcurl-minimal-7.61.1-22.el8.tuxcare.els9.i686.rpm
    sha:5f5d60160a9f710584c30ae53eced117bf5317b6
  • libcurl-minimal-7.61.1-22.el8.tuxcare.els9.x86_64.rpm
    sha:0d7526a7f94eb9c23b068cb6bbd0888da2eb1b61
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.