67 matches found
Moderate Photon OS Security Update - PHSA-2026-5.0-0856
Updates of 'curl' packages of Photon OS have been released...
Moderate Photon OS Security Update - PHSA-2026-4.0-1020
Updates of 'curl' packages of Photon OS have been released...
Moderate Photon OS Security Update - PHSA-2026-4.0-0941
Updates of 'curl' packages of Photon OS have been released...
Important Photon OS Security Update - PHSA-2025-5.0-0660
Updates of 'curl' packages of Photon OS have been released...
[slackware-security] curl
New curl packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.14.0-i586-1slack15.0.txz: Upgraded. This update fixes security issues: No QUIC certificate pinning with wolfSSL. QUIC certificate...
RLSA-2024:5654 Moderate: curl security update
The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: HTTP/2 push headers memory-leak CVE-2024-2398 For more details about the security issues, including the impact, a CVS...
Updated curl packages fix security vulnerabilities
When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. The fix was included previously as part of MGAA-2025-0004...
MGASA-2025-0123 Updated curl packages fix security vulnerabilities
When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. The fix was included previously as part of MGAA-2025-0004...
Moderate Photon OS Security Update - PHSA-2025-4.0-0774
Updates of 'curl' packages of Photon OS have been released...
Linux Distros Unpatched Vulnerability : CVE-2018-1000120
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow exists in curl 7.12.3 to and including curl 7.58.0 in the FTP URL handling that allows an attacker to cause a denial of service or worse...
Moderate Photon OS Security Update - PHSA-2025-5.0-0479
Updates of 'curl' packages of Photon OS have been released...
CVE-2025-0725 vulnerabilities
Vulnerabilities for packages: curl...
CVE-2025-0167 vulnerabilities
Vulnerabilities for packages: curl...
CVE-2025-0725 vulnerabilities
Vulnerabilities for packages: curl...
Updated curl packages fix security vulnerability
When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but...
MGASA-2024-0391 Updated curl packages fix security vulnerability
When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but...
CVE-2024-11053 vulnerabilities
Vulnerabilities for packages: curl...
MGASA-2024-0360 Updated curl packages fix security vulnerability
When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...
CVE-2024-7264 vulnerabilities
Vulnerabilities for packages: curl...
MGASA-2024-0099 Updated curl packages fix security vulnerabilities
CVE-2024-2004: Usage of disabled protocol If all protocols are disabled at run-time with none being added, curl/libcurl would still allow communication with the default set of allowed protocols, including some that are unencrypted. CVE-2024-2398: HTTP/2 push headers memory-leak A memory leak coul...