AlmaLinux 2318 Published by

A curl security update has been released for AlmaLinux 8.



ALSA-2022:6159 Moderate: curl security update


Type:
security

Severity:
moderate

Release date:
2022-08-30

Description
Security Fix(es):
* curl: HTTP compression denial of service (CVE-2022-32206)
* curl: FTP-KRB bad message verification (CVE-2022-32208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
RHSA-2022:6159
CVE-2022-32206
CVE-2022-32208
ALSA-2022:6159

Updates packages:
curl-7.61.1-22.el8_6.4.ppc64le.rpm
libcurl-devel-7.61.1-22.el8_6.4.ppc64le.rpm
libcurl-7.61.1-22.el8_6.4.ppc64le.rpm
libcurl-minimal-7.61.1-22.el8_6.4.ppc64le.rpm
libcurl-minimal-7.61.1-22.el8_6.4.aarch64.rpm
libcurl-7.61.1-22.el8_6.4.aarch64.rpm
curl-7.61.1-22.el8_6.4.aarch64.rpm
libcurl-devel-7.61.1-22.el8_6.4.aarch64.rpm
libcurl-7.61.1-22.el8_6.4.i686.rpm
curl-7.61.1-22.el8_6.4.x86_64.rpm
libcurl-devel-7.61.1-22.el8_6.4.i686.rpm
libcurl-minimal-7.61.1-22.el8_6.4.i686.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2022:6159 Moderate: curl security update