Lucene search
OracleLinuxELSA-2022-6157HistoryAug 25, 2022 - 12:00 a.m.
curl security update
2022-08-2500:00:00
linux.oracle.com
59
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
[7.76.1-14.el9_0.5]
- fix unpreserved file permissions (CVE-2022-32207)
- fix HTTP compression denial of service (CVE-2022-32206)
- fix FTP-KRB bad message verification (CVE-2022-32208)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | curl | < 7.76.1-14.el9_0.5 | curl-7.76.1-14.el9_0.5.src.rpm |
| oracle linux | 9 | aarch64 | curl | < 7.76.1-14.el9_0.5 | curl-7.76.1-14.el9_0.5.aarch64.rpm |
| oracle linux | 9 | aarch64 | curl-minimal | < 7.76.1-14.el9_0.5 | curl-minimal-7.76.1-14.el9_0.5.aarch64.rpm |
| oracle linux | 9 | aarch64 | libcurl | < 7.76.1-14.el9_0.5 | libcurl-7.76.1-14.el9_0.5.aarch64.rpm |
| oracle linux | 9 | aarch64 | libcurl-devel | < 7.76.1-14.el9_0.5 | libcurl-devel-7.76.1-14.el9_0.5.aarch64.rpm |
| oracle linux | 9 | aarch64 | libcurl-minimal | < 7.76.1-14.el9_0.5 | libcurl-minimal-7.76.1-14.el9_0.5.aarch64.rpm |
| oracle linux | 9 | src | curl | < 7.76.1-14.el9_0.5 | curl-7.76.1-14.el9_0.5.src.rpm |
| oracle linux | 9 | x86_64 | curl | < 7.76.1-14.el9_0.5 | curl-7.76.1-14.el9_0.5.x86_64.rpm |
| oracle linux | 9 | x86_64 | curl-minimal | < 7.76.1-14.el9_0.5 | curl-minimal-7.76.1-14.el9_0.5.x86_64.rpm |
| oracle linux | 9 | i686 | libcurl | < 7.76.1-14.el9_0.5 | libcurl-7.76.1-14.el9_0.5.i686.rpm |
Related
nessus
nessus
RHEL 9 : curl (RHSA-2022:6157)
2022-08-24 00:00:00
Rocky Linux 9 : curl (RLSA-2022:6157)
2023-11-07 00:00:00
Oracle Linux 9 : curl (ELSA-2022-6157)
2022-08-25 00:00:00
almalinux
almalinux
Moderate: curl security update
2022-08-24 00:00:00
Moderate: curl security update
2022-08-24 00:00:00
rocky
rocky
curl security update
2022-08-24 14:56:48
curl security update
2022-08-24 15:12:40
osv
osv
Moderate: curl security update
2022-08-24 14:56:48
Moderate: curl security update
2022-08-24 00:00:00
curl vulnerabilities
2022-06-27 14:14:25
redhat
redhat
(RHSA-2022:6157) Moderate: curl security update
2022-08-24 14:56:48
(RHSA-2022:6159) Moderate: curl security update
2022-08-24 15:12:40
openvas
openvas
Fedora: Security Advisory for curl (FEDORA-2022-1b3d7f6973)
2022-07-16 00:00:00
Fedora: Security Advisory for curl (FEDORA-2022-8bd3bf5b40)
2022-07-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2305-1)
2022-07-07 00:00:00
ubuntu
ubuntu
curl vulnerabilities
2022-06-27 00:00:00
curl vulnerabilities
2022-07-01 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0412
2022-06-30 00:00:00
Moderate Photon OS Security Update - PHSA-2022-0491
2022-06-30 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0412
2022-06-30 00:00:00
freebsd
freebsd
cURL -- Multiple vulnerabilities
2022-06-27 00:00:00
mageia
mageia
Updated curl packages fix security vulnerability
2022-07-05 22:11:26
fedora
fedora
[SECURITY] Fedora 35 Update: curl-7.79.1-5.fc35
2022-07-15 01:36:25
[SECURITY] Fedora 36 Update: curl-7.82.0-6.fc36
2022-07-01 01:09:59
slackware
slackware
[slackware-security] curl
2022-06-28 19:27:52
cloudfoundry
cloudfoundry
USN-5495-1: curl vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
suse
suse
Security update for curl (important)
2022-07-06 00:00:00
Security update for curl (important)
2022-07-07 00:00:00
Security update for curl (important)
2022-09-01 00:00:00
ibm
ibm
oraclelinux
oraclelinux
curl security update
2022-08-24 00:00:00
amazon
amazon
Medium: curl
2022-10-31 19:40:00
Medium: curl
2022-12-01 17:33:00
cve
cve
debiancve
debiancve
veracode
veracode
Man-in-the-Middle (MitM)
2022-06-29 00:04:59
Privilege Escalation
2022-07-01 13:39:27
Denial Of Service (DoS)
2022-06-29 00:04:45
hackerone
hackerone
Internet Bug Bounty: CVE-2022-32208: FTP-KRB bad message verification
2022-06-27 07:11:13
curl: CVE-2022-32208: FTP-KRB bad message verification
2022-06-02 20:12:35
Internet Bug Bounty: CVE-2022-32207: Unpreserved file permissions
2022-06-27 07:07:21
cbl_mariner
cbl_mariner
CVE-2022-32208 affecting package curl 7.83.1-1
2022-08-03 21:15:00
CVE-2022-32208 affecting package curl 7.76.0-9
2022-08-24 22:05:05
CVE-2022-32207 affecting package curl 7.76.0-9
2022-08-24 22:05:05
redhatcve
redhatcve
ubuntucve
ubuntucve
alpinelinux
alpinelinux
prion
prion
Code injection
2022-07-07 13:15:00
Design/Logic Flaw
2022-07-07 13:15:00
Design/Logic Flaw
2022-07-07 13:15:00
ics
ics
Siemens SCALANCE XCM332
2023-04-13 12:00:00
Siemens SCALANCE SC-600 Family
2022-12-15 12:00:00
Siemens SINAMICS Medium Voltage Products
2023-06-15 12:00:00
debian
debian
[SECURITY] [DSA 5197-1] curl security update
2022-08-01 16:58:44
[SECURITY] [DLA 3085-1] curl security update
2022-08-28 23:00:51
rosalinux
rosalinux
Advisory ROSA-SA-2023-2221
2023-08-22 13:21:47
Advisory ROSA-SA-2023-2220
2023-08-22 13:18:19
gentoo
gentoo
curl: Multiple Vulnerabilities
2022-12-19 00:00:00
aix
aix
Multiple vulnerabilities cURL libcurl affect AIX
2023-06-29 09:35:59
apple
apple
About the security content of macOS Ventura 13
2022-10-24 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for ELSA-2022-6157