Mageia: curl Important Out-of-Bounds Read Advisory CVE-2025-9086
mageia
September 11, 2025
MGASA-2025-0232 - Updated curl packages fix security vulnerability
Summary
Description:
curl is susceptible to an out-of-bounds read in the cookie handler that
could either cause a crash or potentially make allow a clear-text site
to override the contents of a secure cookie. This release also fixes a
rare memory leak in HTTP trailers.
References
- https://bugs.mageia.org/show_bug.cgi?id=34623
- https://curl.se/docs/CVE-2025-9086.html
- https://www.cve.org/CVERecord?id=CVE-2025-9086
Topics Covered
Resolution
SRPMS
- 9/core/curl-7.88.1-4.8.mga9
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Publication date: 11 Sep 2025
URL: https://advisories.mageia.org/MGASA-2025-0232.html
Type: security
CVE: CVE-2025-9086
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!