Lucene search
K

5 matches found

curl security advisories
curl security advisories
added 2026/06/24 8:0 a.m.7 views

Native CA trust persist

libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. An easy handle that first uses default native CA trust can continue trusting the native platform store after the application switches that same handle to custom CA...

9.1CVSS5.9AI score0.0061EPSS
Exploits1References1Affected Software2
Hacker One
Hacker One
added 2026/05/14 10:40 a.m.39 views

curl: rustls backend silently ignores CURLOPT_CRLFILE when native CA store is active

Hi all, When the rustls backend is configured to use the OS native CA store --ca-native / CURLSSLOPTNATIVECA, any CRL file supplied via --crlfile / CURLOPTCRLFILE is silently ignored. The option is accepted — CURLEOK from curleasysetopt, exit 0 from the command line — and revoked certificates pas...

5.8AI score
Exploits0
Fedora
Fedora
added 2024/10/19 1:54 a.m.9 views

[SECURITY] Fedora 40 Update: rust-rustls-native-certs0.7-0.7.3-1.fc40

Rustls-native-certs allows rustls to use the platform native certificate store...

7.2AI score
Exploits0
Fedora
Fedora
added 2024/10/19 1:54 a.m.10 views

[SECURITY] Fedora 40 Update: rust-rustls-native-certs-0.8.0-1.fc40

Rustls-native-certs allows rustls to use the platform native certificate store...

7.2AI score
Exploits0
Fedora
Fedora
added 2024/10/15 12:19 a.m.10 views

[SECURITY] Fedora 41 Update: rust-rustls-native-certs0.7-0.7.3-1.fc41

Rustls-native-certs allows rustls to use the platform native certificate store...

6.9CVSS3.6AI score0.00622EPSS
Exploits0
Rows per page
Query Builder