Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Slackware 15.0: SSA:2023-137-01 Critical: Curl Security Fix

slackware
Calendar Grey May 17, 2023
Dist Slackware Esm H88
Fresh curl updates released for Slackware address significant vulnerabilities related to security hazards and provide enhanced setup guidelines.
New curl packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.1.0-i586-1_slack15.0.txz: Upgraded. This update fixes security issues: more POST-after-PUT confusion. IDN wildcard match. siglongjmp race condition. UAF in SSH sha256 fingerprint check. For more information, see: https://curl.se/docs/CVE-2023-28322.html https://curl.se/docs/CVE-2023-28321.html https://curl.se/docs/CVE-2023-28320.html https://curl.se/docs/CVE-2023-28319.html https://www.cve.org/CVERecord?id=CVE-2023-28322 https://www.cve.org/CVERecord?id=CVE-2023-28321 https://www.cve.org/CVERecord?id=CVE-2023-28320 https://www.cve.org/CVERecord?id=CVE-2023-28319 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical security fix slackware curl

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware 15.0:
Updated package for Slackware x86_64 15.0:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 14.0 package: 2e623a5b0e52359be6906c3b014abbd2 curl-8.1.0-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: b14c7810174656055f0c1451fbdb4a95 curl-8.1.0-x86_64-1_slack14.0.txz
Slackware 14.1 package: d5c134a6460e4e9ae18a5dfbde143dfa curl-8.1.0-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: bd687ceb3385bda37056400bfbe69db4 curl-8.1.0-x86_64-1_slack14.1.txz
Slackware 14.2 package: efaaf05ca3d4acebeae6523b1b9bef4a curl-8.1.0-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: da50bded3fb5c08e409efac28834f088 curl-8.1.0-x86_64-1_slack14.2.txz
Slackware 15.0 package: c72a04d5b25665f85577b3bda8c01957 curl-8.1.0-i586-1_slack15.0.txz
Slackware x86_64 15.0 package: 416358fb24233166ddaf45ada6b4e6f0 curl-8.1.0-x86_64-1_slack15.0.txz
Slackware -current package: cf41367178519ab58640caee689c09e6 n/curl-8.1.0-i586-1.txz
Slackware x86_64 -current package: f6c09160c0a5a1e92bf68db458aa5952 n/curl-8.1.0-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical security fix slackware curl

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg curl-8.1.0-i586-1_slack15.0.txz

Your message here