Lucene search

K
mageiaGentoo FoundationMGASA-2023-0054
HistoryFeb 21, 2023 - 12:25 a.m.

Updated curl packages fix security vulnerability

2023-02-2100:25:36
Gentoo Foundation
advisories.mageia.org
107
curl packages
security vulnerability
http
multi-header compression
denial of service
cve-2023-23916
unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

53.4%

HTTP multi-header compression denial of service. (CVE-2023-23916)

OSVersionArchitecturePackageVersionFilename
Mageia8noarchcurl<ย 7.74.0-1.11curl-7.74.0-1.11.mga8

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

53.4%