MGASA-2022-0185 - Updated curl packages fix security vulnerability
Publication date: 15 May 2022
URL: https://advisories.mageia.org/MGASA-2022-0185.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2022-27781,
CVE-2022-27782
CERTINFO never-ending busy-loop. (CVE-2022-27781)
TLS and SSH connection too eager reuse. (CVE-2022-27782)
References:
- https://bugs.mageia.org/show_bug.cgi?id=30410
- https://curl.se/docs/CVE-2022-27781.html
- https://curl.se/docs/CVE-2022-27782.html
- https://ubuntu.com/security/notices/USN-5412-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782
SRPMS:
- 8/core/curl-7.74.0-1.6.mga8
Mageia 2022-0185: curl security update
CERTINFO never-ending busy-loop
Summary
CERTINFO never-ending busy-loop. (CVE-2022-27781)
TLS and SSH connection too eager reuse. (CVE-2022-27782)
References
- https://bugs.mageia.org/show_bug.cgi?id=30410
- https://curl.se/docs/CVE-2022-27781.html
- https://curl.se/docs/CVE-2022-27782.html
- https://ubuntu.com/security/notices/USN-5412-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782
Resolution
MGASA-2022-0185 - Updated curl packages fix security vulnerability
SRPMS
- 8/core/curl-7.74.0-1.6.mga8
Severity
Publication date: 15 May 2022
URL: https://advisories.mageia.org/MGASA-2022-0185.html
Type: security
CVE: CVE-2022-27781,
CVE-2022-27782
News
HOWTOs
Features
How To Hide Your IP And Keep From Being Tracked
Which Browser is Best for Online Security?
Complete Guide to Using Wapiti Web Vulnerability Scanner to Keep Your Web Applications & Websites Secure
Guide to Web Application Penetration Testing
Thank You for Participating in Our Security Dashboard Redesign Survey
About Us
Powered By
