Lucene search

K
oraclelinuxOracleLinuxELSA-2023-5763
HistoryOct 18, 2023 - 12:00 a.m.

curl security update

2023-10-1800:00:00
linux.oracle.com
14
curl
security update
heap-based buffer overflow
socks5 proxy handshake
cve-2023-38545
cookie injection
none file
cve-2023-38546
unix

10 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.8%

[7.76.1-23.el9_2.4]

  • curl: a heap-based buffer overflow in the SOCKS5 proxy handshake (CVE-2023-38545)
  • curl: cookie injection with none file (CVE-2023-38546)