Lucene search
OracleLinuxELSA-2021-4059HistoryNov 02, 2021 - 12:00 a.m.
curl security update
2021-11-0200:00:00
linux.oracle.com
16
0.003 Low
EPSS
Percentile
69.8%
[7.61.1-18.el8_4.2]
- fix STARTTLS protocol injection via MITM (CVE-2021-22947)
- fix protocol downgrade required TLS bypass (CVE-2021-22946)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 8 | src | curl | < 7.61.1-18.el8_4.2 | curl-7.61.1-18.el8_4.2.src.rpm |
| oracle linux | 8 | aarch64 | curl | < 7.61.1-18.el8_4.2 | curl-7.61.1-18.el8_4.2.aarch64.rpm |
| oracle linux | 8 | aarch64 | libcurl | < 7.61.1-18.el8_4.2 | libcurl-7.61.1-18.el8_4.2.aarch64.rpm |
| oracle linux | 8 | aarch64 | libcurl-devel | < 7.61.1-18.el8_4.2 | libcurl-devel-7.61.1-18.el8_4.2.aarch64.rpm |
| oracle linux | 8 | aarch64 | libcurl-minimal | < 7.61.1-18.el8_4.2 | libcurl-minimal-7.61.1-18.el8_4.2.aarch64.rpm |
| oracle linux | 8 | src | curl | < 7.61.1-18.el8_4.2 | curl-7.61.1-18.el8_4.2.src.rpm |
| oracle linux | 8 | x86_64 | curl | < 7.61.1-18.el8_4.2 | curl-7.61.1-18.el8_4.2.x86_64.rpm |
| oracle linux | 8 | i686 | libcurl | < 7.61.1-18.el8_4.2 | libcurl-7.61.1-18.el8_4.2.i686.rpm |
| oracle linux | 8 | x86_64 | libcurl | < 7.61.1-18.el8_4.2 | libcurl-7.61.1-18.el8_4.2.x86_64.rpm |
| oracle linux | 8 | i686 | libcurl-devel | < 7.61.1-18.el8_4.2 | libcurl-devel-7.61.1-18.el8_4.2.i686.rpm |
Related
nessus
nessus
Ubuntu 16.04 ESM : curl vulnerabilities (USN-5079-2)
2021-09-15 00:00:00
SUSE SLED15 / SLES15 Security Update : curl (SUSE-SU-2021:3298-1)
2021-10-07 00:00:00
SUSE SLES12 Security Update : curl (SUSE-SU-2021:3351-1)
2021-10-13 00:00:00
ubuntu
ubuntu
curl regression
2021-09-21 00:00:00
curl vulnerabilities
2021-09-15 00:00:00
curl vulnerabilities
2021-09-15 00:00:00
almalinux
almalinux
Moderate: curl security update
2021-11-02 07:49:01
redhat
redhat
(RHSA-2022:0635) Moderate: curl security update
2022-02-22 14:34:54
(RHSA-2021:4059) Moderate: curl security update
2021-11-02 07:49:01
(RHSA-2022:1354) Moderate: rh-dotnet31-curl security update
2022-04-13 13:42:42
osv
osv
curl - security update
2021-09-30 00:00:00
curl vulnerabilities
2021-09-15 12:34:55
Moderate: curl security update
2021-11-02 07:49:01
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:3332-1)
2021-10-12 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1221)
2022-02-26 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1370)
2022-04-13 00:00:00
suse
suse
Security update for curl (moderate)
2021-10-06 00:00:00
Security update for curl (moderate)
2021-10-18 00:00:00
rocky
rocky
curl security update
2021-11-02 07:49:01
ibm
ibm
debian
debian
[SECURITY] [DLA 2773-1] curl security update
2021-09-30 21:58:49
[SECURITY] [DLA 3085-1] curl security update
2022-08-28 23:00:51
[SECURITY] [DSA 5197-1] curl security update
2022-08-01 16:58:44
amazon
amazon
Medium: curl
2021-11-10 22:13:00
Medium: curl
2021-12-08 02:22:00
photon
photon
fedora
fedora
[SECURITY] Fedora 35 Update: curl-7.79.1-1.fc35
2021-11-03 01:12:29
[SECURITY] Fedora 34 Update: curl-7.76.1-12.fc34
2021-09-21 15:33:29
[SECURITY] Fedora 33 Update: curl-7.71.1-11.fc33
2021-10-02 01:10:15
mageia
mageia
Updated curl packages fix security vulnerability
2021-09-23 07:49:29
cloudfoundry
cloudfoundry
USN-5079-1: curl vulnerabilities | Cloud Foundry
2021-10-28 00:00:00
freebsd
freebsd
cURL -- Multiple vulnerabilities
2021-09-15 00:00:00
MySQL -- Multiple vulnerabilities
2022-01-18 00:00:00
slackware
slackware
[slackware-security] curl
2021-09-16 03:11:12
prion
prion
Design/Logic Flaw
2021-09-29 20:15:00
Code injection
2021-09-29 20:15:00
hackerone
hackerone
curl: CVE-2021-22946: Protocol downgrade required TLS bypassed
2021-09-09 00:34:37
curl: CVE-2021-22947: STARTTLS protocol injection via MITM
2021-09-09 14:00:44
nvd
nvd
CVE-2021-22946
2021-09-29 20:15:08
CVE-2021-22947
2021-09-29 20:15:08
cvelist
cvelist
CVE-2021-22946
2021-09-29 00:00:00
CVE-2021-22947
2021-09-29 00:00:00
redhatcve
redhatcve
CVE-2021-22946
2021-09-15 06:52:15
CVE-2021-22947
2021-09-15 07:22:02
cve
cve
CVE-2021-22946
2021-09-29 20:15:08
CVE-2021-22947
2021-09-29 20:15:08
cbl_mariner
cbl_mariner
CVE-2021-22947 affecting package curl 7.76.0-9
2021-10-05 03:00:51
CVE-2021-22946 affecting package curl 7.76.0-9
2021-10-05 03:00:51
CVE-2021-22946 affecting package curl for versions less than 7.82.0-1
2022-04-09 06:51:45
ubuntucve
ubuntucve
CVE-2021-22947
2021-09-15 00:00:00
CVE-2021-22946
2021-09-15 00:00:00
debiancve
debiancve
CVE-2021-22946
2021-09-29 20:15:08
CVE-2021-22947
2021-09-29 20:15:08
veracode
veracode
Denial Of Service (DoS)
2021-09-17 21:34:33
Man-In-The-Middle Attack (MitM)
2021-09-17 21:34:37
alpinelinux
alpinelinux
CVE-2021-22946
2021-09-29 20:15:08
CVE-2021-22947
2021-09-29 20:15:08
mscve
mscve
Open Source Curl Remote Code Execution Vulnerability
2022-01-11 08:00:00
krebs
krebs
‘Wormable’ Flaw Leads January 2022 Patch Tuesday
2022-01-11 22:18:55
malwarebytes
malwarebytes
gentoo
gentoo
curl: Multiple Vulnerabilities
2022-12-19 00:00:00
thn
thn
hivepro
hivepro
Microsoft Patch Tuesday fixes critical zero-days along with 97 other flaws
2022-01-12 07:30:07
threatpost
threatpost
Microsoft Faces Wormable, Critical RCE Bug & 6 Zero-Days
2022-01-11 21:54:57
ics
ics
Siemens RUGGEDCOM ROX
2023-07-13 12:00:00
Siemens SINEC INS
2022-03-10 12:00:00
apple
apple
About the security content of macOS Monterey 12.3
2022-03-14 00:00:00
mskb
mskb
January 11, 2022—KB5009566 (OS Build 22000.434)
2022-01-11 08:00:00
January 11, 2022—KB5009545 (OS Build 18363.2037)
2022-01-11 08:00:00
kaspersky
kaspersky
KLA12422 Multiple vulnerabilities in Microsoft Windows
2022-01-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - January 2022
2022-01-11 21:41:56
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - July 2022
2022-07-19 00:00:00
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00