Oracle9: ELSA-2023-2650: curl security Moderate Security Update | L...

What Are You Looking For?

Popular Tags

Sign Up
Oracle Linux Security Advisory ELSA-2023-2650

https://linux.oracle.com/errata/ELSA-2023-2650.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
curl-7.76.1-23.el9_2.1.x86_64.rpm
curl-minimal-7.76.1-23.el9_2.1.x86_64.rpm
libcurl-7.76.1-23.el9_2.1.i686.rpm
libcurl-7.76.1-23.el9_2.1.x86_64.rpm
libcurl-devel-7.76.1-23.el9_2.1.i686.rpm
libcurl-devel-7.76.1-23.el9_2.1.x86_64.rpm
libcurl-minimal-7.76.1-23.el9_2.1.i686.rpm
libcurl-minimal-7.76.1-23.el9_2.1.x86_64.rpm

aarch64:
curl-7.76.1-23.el9_2.1.aarch64.rpm
curl-minimal-7.76.1-23.el9_2.1.aarch64.rpm
libcurl-7.76.1-23.el9_2.1.aarch64.rpm
libcurl-devel-7.76.1-23.el9_2.1.aarch64.rpm
libcurl-minimal-7.76.1-23.el9_2.1.aarch64.rpm


SRPMS:
https://oss.oracle.com/ol9/SRPMS-updates//curl-7.76.1-23.el9_2.1.src.rpm

Related CVEs:

CVE-2023-27535




Description of changes:

[7.76.1-23.el9_2.1]
- fix FTP too eager connection reuse (CVE-2023-27535)

[7.76.1-23]
- fix HTTP multi-header compression denial of service (CVE-2023-23916)

[7.76.1-22]
- smb/telnet: fix use-after-free when HTTP proxy denies tunnel (CVE-2022-43552)

[7.76.1-21]
- fix POST following PUT confusion (CVE-2022-32221)

[7.76.1-20]
- control code in cookie denial of service (CVE-2022-35252)


_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle9: ELSA-2023-2650: curl security Moderate Security Update

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[7.76.1-23.el9_2.1] - fix FTP too eager connection reuse (CVE-2023-27535) [7.76.1-23] - fix HTTP multi-header compression denial of service (CVE-2023-23916) [7.76.1-22] - smb/telnet: fix use-after-free when HTTP proxy denies tunnel (CVE-2022-43552) [7.76.1-21] - fix POST following PUT confusion (CVE-2022-32221) [7.76.1-20] - control code in cookie denial of service (CVE-2022-35252)

SRPMs

https://oss.oracle.com/ol9/SRPMS-updates//curl-7.76.1-23.el9_2.1.src.rpm

x86_64

curl-7.76.1-23.el9_2.1.x86_64.rpm curl-minimal-7.76.1-23.el9_2.1.x86_64.rpm libcurl-7.76.1-23.el9_2.1.i686.rpm libcurl-7.76.1-23.el9_2.1.x86_64.rpm libcurl-devel-7.76.1-23.el9_2.1.i686.rpm libcurl-devel-7.76.1-23.el9_2.1.x86_64.rpm libcurl-minimal-7.76.1-23.el9_2.1.i686.rpm libcurl-minimal-7.76.1-23.el9_2.1.x86_64.rpm

aarch64

curl-7.76.1-23.el9_2.1.aarch64.rpm curl-minimal-7.76.1-23.el9_2.1.aarch64.rpm libcurl-7.76.1-23.el9_2.1.aarch64.rpm libcurl-devel-7.76.1-23.el9_2.1.aarch64.rpm libcurl-minimal-7.76.1-23.el9_2.1.aarch64.rpm

i386

Severity
Related CVEs: CVE-2023-27535

Related News

Kali Linux 2023.2 Released with 13 New Tools, Pre-Built HyperV Image

New Linux Ransomware Strain BlackSuit Shows Striking Similarities to Royal

New GobRAT Remote Access Trojan Targeting Linux Routers in Japan

New Ransomware Group Uses Repurposed LockBit, Babuk Variants

News

Advisories

HOWTOs

Features

Linux Container Security Primer
Email Phishing Using Kali Linux
Is Linux A More Secure Option Than Windows For Businesses?
How Secure Is Linux?
How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy