Debian: Security Advisory (DLA-625-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5587-1: curl vulnerability | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description Axel Chong discovered that when curl accepted and sent back cookies containing control bytes that a HTTPS server might return a 400 Bad Request Error response. A malicious cookie host...

Ubuntu: Security Advisory (USN-4903-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5079-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-4051-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-3457-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 17.04 : curl vulnerability (USN-3262-1)

It was discovered that curl incorrectly handled client certificates when resuming a TLS session. A remote attacker could use this to hijack a previously authenticated connection. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...

Ubuntu Update for curl USN-2097-1

Check for the Version of curl OpenVAS Vulnerability Test $Id: gbubuntuUSN20971.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for curl USN-2097-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : curl vulnerability (USN-2097-1)

Paras Sethia and Yehezkel Horowitz discovered that libcurl incorrectly reused connections when NTLM authentication was being used. This could lead to the use of unintended credentials, possibly exposing sensitive information. Note that Tenable Network Security has extracted the preceding...

Ubuntu Update for curl USN-2058-1

Check for the Version of curl OpenVAS Vulnerability Test $Id: gbubuntuUSN20581.nasl 8494 2018-01-23 06:57:55Z teissa $ Ubuntu Update for curl USN-2058-1 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

Ubuntu: Security Advisory (USN-2058-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.10 / 11.04 / 11.10 : curl vulnerability (USN-1346-1)

Dan Fandrich discovered that curl incorrectly handled URLs containing embedded or percent-encoded control characters. If a user or automated system were tricked into processing a specially crafted URL, arbitrary data could be injected. Note that Tenable Network Security has extracted the precedin...

Ubuntu: Security Advisory (USN-484-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu USN-726-2 (curl)

The remote host is missing an update to curl announced via advisory USN-726-2. OpenVAS Vulnerability Test $Id: ubuntu7262.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7262.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-726-2 curl Authors: Thomas Reinke...

Ubuntu USN-726-1 (curl)

The remote host is missing an update to curl announced via advisory USN-726-1. OpenVAS Vulnerability Test $Id: ubuntu7261.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7261.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-726-1 curl Authors: Thomas Reinke...

[USN-726-1] curl vulnerability

=========================================================== Ubuntu Security Notice USN-726-1 March 03, 2009 curl vulnerability CVE-2009-0037 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04...

Debian Security Advisory DSA 1333-1 (libcurl3-gnutls)

The remote host is missing an update to libcurl3-gnutls announced via advisory DSA 1333-1. OpenVAS Vulnerability Test $Id: deb13331.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1333-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Ubuntu 6.06 LTS / 6.10 / 7.04 : curl vulnerability (USN-484-1)

It was discovered that the GnuTLS certificate verification methods implemented in Curl did not check for expiration and activation dates. When performing validations, tools using libcurl3-gnutls would incorrectly allow connections to sites using expired certificates. Note that Tenable Network...

Debian DSA-1333-1 : libcurl3-gnutls - missing input validation

It has been discovered that the GnuTLS certificate verification methods implemented in libcurl-gnutls, a solid, usable, and portable multi-protocol file transfer library, did not check for expired or invalid dates. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

[SECURITY] [DSA 1333-1] New libcurl3-gnutls packages fix certificate handling

------------------------------------------------------------------------ Debian Security Advisory DSA-1333 [email protected] http://www.debian.org/security/ Steve Kemp July 18th, 2007 - ------------------------------------------------------------------------ Package : libcurl3-gnutls...