Security Bulletin: Vulnerability in curl affects IBM Netezza Appliance

Summary The curl package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2023-27534 Vulnerability Details CVEID:CVE-2023-27534 DESCRIPTION: A path traversal vulnerability exists in curl 8.0.0 SFTP implementation causes the tilde character to be wrongl...

SUSE: Security Advisory (SUSE-SU-2026:0494-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : curl (SUSE-SU-2026:0494-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:0494-1 advisory. - CVE-2023-27534: Regression fix for SFTP path resolving discrepancy bsc1219273 Tenable has extracted the preceding description block directly from the...

Debian dla-4213 : curl - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4213 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4213-1 [email protected] https://www.debian.org/lts/security/...

[SECURITY] [DLA 4213-1] curl regression update

Debian LTS Advisory DLA-4213-1 [email protected] https://www.debian.org/lts/security/ Carlos Henrique Lima Melara June 11, 2025 https://wiki.debian.org/LTS Package : curl Version : 7.74.0-1.3+deb11u15 The initial fix for CVE-2023-27534 in curl made the handling of tilde way more strict ...

Linux Distros Unpatched Vulnerability : CVE-2023-27534

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A path traversal vulnerability exists in curl 8.0.0 SFTP implementation causes the tilde character to be wrongly replaced when used as a prefix in the first pat...

Azure Linux 3.0 Security Update: cmake / curl / mysql / rust / tensorflow (CVE-2023-27534)

The version of cmake / curl / mysql / rust / tensorflow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-27534 advisory. - A path traversal vulnerability exists in curl 8.0.0 SFTP implementation...

CVE-2023-27534 affecting package cmake for versions less than 3.21.4-12

CVE-2023-27534 affecting package cmake for versions less than 3.21.4-12. A patched version of the package is available...

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2261)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Photon OS 5.0: Cmake PHSA-2023-5.0-0035

An update of the cmake package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0035. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

SUSE-SU-2024:2009-1 Security update for curl

This update for curl fixes the following issues: - CVE-2023-27534: Properly resolve when used in a SFTP path. bsc1219273...

CVE-2023-27534 affecting package tensorflow for versions less than 2.16.1-1

CVE-2023-27534 affecting package tensorflow for versions less than 2.16.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-27534 affecting package cmake for versions less than 3.28.2-1

CVE-2023-27534 affecting package cmake for versions less than 3.28.2-1. An upgraded version of the package is available that resolves this issue...

Security Bulletin: IBM Storage Ceph is vulnerable to Path Traversal in the RHEL UBI (CVE-2023-27534)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. CVE-2023-27534 This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. Vulnerability Details CVEID:CVE-2023-27534 DESCRIPTION: cURL libcurl could allow a remote attacker to obtain sensitive...

EulerOS Virtualization 3.0.6.6 : curl (EulerOS-SA-2023-3395)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass...

CVE-2023-27534 affecting package mysql for versions less than 8.0.34-1

CVE-2023-27534 affecting package mysql for versions less than 8.0.34-1. An upgraded version of the package is available that resolves this issue...

Vulnerabilities fixed in Oracle Hyperion

Vulnerabilities have been fixed in Oracle Hyperion products. A malicious party can exploit the vulnerabilities to gain full control to the Oracle Hyperion infrastructure. ------------------.------.------------------------------------- | CVE-ID | CVSS | Vector |...

CVE-2023-27534 affecting package rust for versions less than 1.72.0-2

CVE-2023-27534 affecting package rust for versions less than 1.72.0-2. An upgraded version of the package is available that resolves this issue...

BELL-CVE-2023-27534 CVE-2023-27534 does not affect BellSoft software

Bulletin has no description...

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-2500)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...