Astra Linux - уязвимость в curl

An integer overflow vulnerability exists in the tooloperate.c file of curl 7.65.2, which can be exploited by using a large value as the retry delay. NOTE: Many reports indicate that this does not have a direct security impact on the curl user. However, it may in theory cause a denial of service t...

openSUSE 16 Security Update : curl (openSUSE-SU-2025-20090-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025-20090-1 advisory. - CVE-2025-9086: Fixed Out of bounds read for cookie path bsc1249191 - CVE-2025-11563: Fixed wcurl path traversal with percent-encoded slashes...

curl: Integer overflows in tool_operate.c at line 1541

Summary: add summary of the vulnerability In tooloperate.c at line 1541, if --retry-delay18446744073709552, config-retrydelay1000 2^64 results in integer overflows, on 64 bit architectures; Steps To Reproduce: add details for how we can reproduce the issue 1. add step Tooloperate.c add a "printf"...