A curl security update has been released for Oracle Linux 7.
Oracle Linux Security Advisory ELSA-2020-5562
http://linux.oracle.com/errata/ELSA-2020-5562.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
curl-7.29.0-54.0.5.el7_7.2.x86_64.rpm
libcurl-7.29.0-54.0.5.el7_7.2.i686.rpm
libcurl-7.29.0-54.0.5.el7_7.2.x86_64.rpm
libcurl-devel-7.29.0-54.0.5.el7_7.2.i686.rpm
libcurl-devel-7.29.0-54.0.5.el7_7.2.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/curl-7.29.0-54.0.5.el7_7.2.src.rpm
Description of changes:
[7.29.0-54.0.5.el7_7.2]
- Fix TFTP small blocksize heap buffer overflow
(https://curl.haxx.se/docs/CVE-2019-5482.html)[CVE-2019-5482][Orabug:30568724]