Lucene search
OracleLinuxELSA-2023-2963HistoryMay 24, 2023 - 12:00 a.m.
curl security and bug fix update
2023-05-2400:00:00
linux.oracle.com
55
security update
bug fix
curl
http
denial of service
cve-2023-23916
h2
smb
telnet
0.001 Low
EPSS
Percentile
50.8%
[7.61.1-30]
- fix HTTP multi-header compression denial of service (CVE-2023-23916)
[7.61.1-29] - h2: lower initial window size to 32 MiB (#2166254)
[7.61.1-28] - smb/telnet: fix use-after-free when HTTP proxy denies tunnel (CVE-2022-43552)
[7.61.1-27] - upon HTTP_1_1_REQUIRED, retry the request with HTTP/1.1 (#2139337)
[7.61.1-26] - control code in cookie denial of service (CVE-2022-35252)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 8 | src | curl | < 7.61.1-30.el8 | curl-7.61.1-30.el8.src.rpm |
| oracle linux | 8 | aarch64 | curl | < 7.61.1-30.el8 | curl-7.61.1-30.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | libcurl | < 7.61.1-30.el8 | libcurl-7.61.1-30.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | libcurl-devel | < 7.61.1-30.el8 | libcurl-devel-7.61.1-30.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | libcurl-minimal | < 7.61.1-30.el8 | libcurl-minimal-7.61.1-30.el8.aarch64.rpm |
| oracle linux | 8 | src | curl | < 7.61.1-30.el8 | curl-7.61.1-30.el8.src.rpm |
| oracle linux | 8 | x86_64 | curl | < 7.61.1-30.el8 | curl-7.61.1-30.el8.x86_64.rpm |
| oracle linux | 8 | i686 | libcurl | < 7.61.1-30.el8 | libcurl-7.61.1-30.el8.i686.rpm |
| oracle linux | 8 | x86_64 | libcurl | < 7.61.1-30.el8 | libcurl-7.61.1-30.el8.x86_64.rpm |
| oracle linux | 8 | i686 | libcurl-devel | < 7.61.1-30.el8 | libcurl-devel-7.61.1-30.el8.i686.rpm |
Related
almalinux
almalinux
Low: curl security update
2023-05-09 00:00:00
Low: curl security and bug fix update
2023-05-16 00:00:00
redhat
redhat
(RHSA-2023:2963) Low: curl security and bug fix update
2023-05-16 05:59:21
(RHSA-2023:2478) Low: curl security update
2023-05-09 05:11:57
(RHSA-2023:7743) Low: curl security update
2023-12-12 16:01:33
nessus
nessus
CentOS 8 : curl (CESA-2023:2963)
2023-05-17 00:00:00
AlmaLinux 8 : curl (ALSA-2023:2963)
2023-05-20 00:00:00
Oracle Linux 9 : curl (ELSA-2023-2478)
2023-05-15 00:00:00
oraclelinux
oraclelinux
curl security update
2023-05-15 00:00:00
curl security update
2023-12-12 00:00:00
osv
osv
Low: curl security and bug fix update
2023-05-16 00:00:00
Low: curl security update
2023-05-09 00:00:00
curl - security update
2023-01-28 00:00:00
ubuntucve
ubuntucve
CVE-2022-35252
2022-08-31 00:00:00
CVE-2022-43552
2022-12-21 00:00:00
ubuntu
ubuntu
curl vulnerability
2022-09-01 00:00:00
curl vulnerabilities
2023-01-05 00:00:00
curl vulnerabilities
2023-02-27 00:00:00
hackerone
hackerone
curl: CVE-2022-35252: control code in cookie denial of service
2022-06-26 08:46:53
curl: CVE-2022-43552: HTTP Proxy deny use-after-free
2022-11-07 16:45:50
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0333)
2022-09-19 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2757)
2022-11-14 00:00:00
Ubuntu: Security Advisory (USN-5587-1)
2022-09-02 00:00:00
slackware
slackware
[slackware-security] curl
2022-09-01 03:09:16
fedora
fedora
[SECURITY] Fedora 36 Update: curl-7.82.0-8.fc36
2022-09-06 10:05:29
[SECURITY] Fedora 37 Update: curl-7.85.0-1.fc37
2022-09-14 00:23:17
[SECURITY] Fedora 35 Update: curl-7.79.1-6.fc35
2022-09-19 01:21:12
cvelist
cvelist
CVE-2022-35252
2022-09-23 00:00:00
CVE-2022-43552
2023-02-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-09-01 05:02:48
Use-After-Free
2022-12-23 19:14:50
cloudfoundry
cloudfoundry
USN-5587-1: curl vulnerability | Cloud Foundry
2022-09-29 00:00:00
USN-5788-1: curl vulnerabilities | Cloud Foundry
2023-01-26 00:00:00
alpinelinux
alpinelinux
CVE-2022-35252
2022-09-23 14:15:12
CVE-2022-43552
2023-02-09 20:15:10
redos
redos
ROS-20221007-01
2022-10-07 00:00:00
ROS-20230414-04
2023-04-14 00:00:00
ibm
ibm
redhatcve
redhatcve
CVE-2022-43552
2022-12-21 09:36:44
CVE-2022-35252
2022-08-31 19:59:52
prion
prion
Path traversal
2023-02-09 20:15:00
Design/Logic Flaw
2022-09-23 14:15:00
cbl_mariner
cbl_mariner
CVE-2022-43552 affecting package tensorflow for versions less than 2.16.1-1
2024-04-17 22:02:46
CVE-2022-43552 affecting package mysql 8.0.32-1
2024-06-18 09:08:13
CVE-2022-43552 affecting package cmake 3.21.4-3
2024-06-18 09:08:13
kaspersky
kaspersky
KLA48562 ACE vulnerability in Microsoft Windows
2023-02-10 00:00:00
KLA48563 ACE vulnerability in Microsoft Mariner
2023-02-10 00:00:00
cgr
cgr
CVE-2022-43552 vulnerabilities
2024-05-19 03:07:16
centos
centos
curl, libcurl security update
2024-01-12 19:12:33
nvd
nvd
CVE-2022-43552
2023-02-09 20:15:10
CVE-2022-35252
2022-09-23 14:15:12
debiancve
debiancve
CVE-2022-43552
2023-02-09 20:15:10
CVE-2022-35252
2022-09-23 14:15:12
wolfi
wolfi
CVE-2022-43552 vulnerabilities
2024-06-18 09:08:19
cve
cve
CVE-2022-35252
2022-09-23 14:15:12
CVE-2022-43552
2023-02-09 20:15:10
suse
suse
Security update for curl (low)
2022-09-02 00:00:00
Security update for curl (low)
2022-09-02 00:00:00
mageia
mageia
Updated curl packages fix security vulnerability
2022-09-16 22:39:55
Updated curl packages fix security vulnerability
2022-12-31 01:39:00
mscve
mscve
Open Source Curl Remote Code Execution Vulnerability
2023-02-10 00:00:00
f5
f5
K000133092: cURL vulnerability CVE-2022-43552
2023-03-21 00:00:00
debian
debian
[SECURITY] [DLA 3288-1] curl security update
2023-01-28 21:19:47
photon
photon
Important Photon OS Security Update - PHSA-2022-0240
2022-09-05 00:00:00
Important Photon OS Security Update - PHSA-2022-0304
2022-12-21 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0508
2022-12-22 00:00:00
amazon
amazon
Medium: curl
2023-04-13 19:01:00
Medium: curl
2023-01-30 16:02:00
ics
ics
Siemens SINEC NMS Third-Party
2023-05-11 12:00:00