ALSA-2021:3582 Moderate: curl security update

AlmaLinux 2318 Published by

A curl security update has been released for AlmaLinux.



ALSA-2021:3582 Moderate: curl security update


Type:
security

Severity:
moderate

Release date:
2021-09-23

Description
Security Fix(es):
* curl: Content not matching hash in Metalink is not being discarded (CVE-2021-22922)
* curl: Metalink download sends credentials (CVE-2021-22923)
* curl: Bad connection reuse due to flawed path name checks (CVE-2021-22924)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
CVE-2021-22922
CVE-2021-22923
CVE-2021-22924

Updates packages:
curl-7.61.1-18.el8_4.1.x86_64.rpm
libcurl-7.61.1-18.el8_4.1.i686.rpm
libcurl-7.61.1-18.el8_4.1.x86_64.rpm
libcurl-devel-7.61.1-18.el8_4.1.i686.rpm
libcurl-devel-7.61.1-18.el8_4.1.x86_64.rpm
libcurl-minimal-7.61.1-18.el8_4.1.i686.rpm
libcurl-minimal-7.61.1-18.el8_4.1.x86_64.rpm

Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2021:3582 Moderate: curl security update


ALBA-2021:3577 python-ldap bug fix and enhancement update

openSUSE-SU-2021:3202-1: moderate: Security update for linuxptp

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...