Lucene search
RedHatRHSA-2023:2650HistoryMay 09, 2023 - 10:14 a.m.
(RHSA-2023:2650) Moderate: curl security update
2023-05-0910:14:37
access.redhat.com
8
rhsa-2023-2650
libcurl library
curl utility
downloading files
http
ftp
ldap
ftp connection reuse
cve-2023-27535
cvss score
The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.
Security Fix(es):
- curl: FTP too eager connection reuse (CVE-2023-27535)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | i686 | curl-debuginfo | < 7.76.1-23.el9_2.1 | curl-debuginfo-7.76.1-23.el9_2.1.i686.rpm |
| RedHat | 9 | aarch64 | libcurl-devel | < 7.76.1-23.el9_2.1 | libcurl-devel-7.76.1-23.el9_2.1.aarch64.rpm |
| RedHat | 9 | i686 | curl-debugsource | < 7.76.1-23.el9_2.1 | curl-debugsource-7.76.1-23.el9_2.1.i686.rpm |
| RedHat | 9 | ppc64le | curl-debugsource | < 7.76.1-23.el9_2.1 | curl-debugsource-7.76.1-23.el9_2.1.ppc64le.rpm |
| RedHat | 9 | ppc64le | libcurl-debuginfo | < 7.76.1-23.el9_2.1 | libcurl-debuginfo-7.76.1-23.el9_2.1.ppc64le.rpm |
| RedHat | 9 | x86_64 | curl-minimal-debuginfo | < 7.76.1-23.el9_2.1 | curl-minimal-debuginfo-7.76.1-23.el9_2.1.x86_64.rpm |
| RedHat | 9 | ppc64le | libcurl-minimal-debuginfo | < 7.76.1-23.el9_2.1 | libcurl-minimal-debuginfo-7.76.1-23.el9_2.1.ppc64le.rpm |
| RedHat | 9 | aarch64 | libcurl-debuginfo | < 7.76.1-23.el9_2.1 | libcurl-debuginfo-7.76.1-23.el9_2.1.aarch64.rpm |
| RedHat | 9 | aarch64 | curl-minimal-debuginfo | < 7.76.1-23.el9_2.1 | curl-minimal-debuginfo-7.76.1-23.el9_2.1.aarch64.rpm |
| RedHat | 9 | aarch64 | curl | < 7.76.1-23.el9_2.1 | curl-7.76.1-23.el9_2.1.aarch64.rpm |
Related
hackerone
hackerone
curl: CVE-2023-27535: FTP too eager connection reuse
2023-03-05 21:25:18
Internet Bug Bounty: CVE-2023-27535: FTP too eager connection reuse
2023-03-20 07:38:58
nessus
nessus
RHEL 9 : curl (RHSA-2023:2650)
2023-05-13 00:00:00
CentOS 8 : curl (CESA-2023:3106)
2024-02-08 00:00:00
AlmaLinux 8 : curl (ALSA-2023:3106)
2023-05-19 00:00:00
redhat
redhat
alpinelinux
alpinelinux
CVE-2023-27535
2023-03-30 20:15:07
cbl_mariner
cbl_mariner
CVE-2023-27535 affecting package curl for versions less than 8.0.1-1
2023-04-16 00:48:11
CVE-2023-27535 affecting package rust for versions less than 1.72.0-2
2023-10-11 01:41:59
CVE-2023-27535 affecting package tensorflow for versions less than 2.16.1-1
2024-04-17 22:02:46
osv
osv
Moderate: curl security and bug fix update
2023-05-16 00:00:00
Moderate: curl security and bug fix update
2023-05-18 19:18:14
FTP too eager connection reuse
2023-03-20 08:00:00
debiancve
debiancve
CVE-2023-27535
2023-03-30 20:15:07
redhatcve
redhatcve
CVE-2023-27535
2023-03-21 13:13:39
nvd
nvd
CVE-2023-27535
2023-03-30 20:15:07
prion
prion
Authentication flaw
2023-03-30 20:15:00
cvelist
cvelist
CVE-2023-27535
2023-03-30 00:00:00
ubuntucve
ubuntucve
CVE-2023-27535
2023-03-20 00:00:00
ibm
ibm
rocky
rocky
curl security and bug fix update
2023-05-18 19:18:14
almalinux
almalinux
Moderate: curl security and bug fix update
2023-05-16 00:00:00
Moderate: curl security update
2023-05-09 00:00:00
oraclelinux
oraclelinux
curl security update
2023-05-17 00:00:00
curl security and bug fix update
2023-05-25 00:00:00
cve
cve
CVE-2023-27535
2023-03-30 20:15:07
veracode
veracode
Authentication Bypass
2023-03-21 00:27:47
openvas
openvas
Ubuntu: Security Advisory (USN-5964-2)
2023-03-28 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-2510)
2023-08-01 00:00:00
Debian: Security Advisory (DLA-3398-1)
2023-04-24 00:00:00
cloudlinux
cloudlinux
curl: Fix of 3 CVEs
2023-04-14 16:45:12
amazon
amazon
Medium: curl
2023-04-13 19:01:00
Medium: curl
2023-06-05 16:39:00
ubuntu
ubuntu
curl vulnerabilities
2023-03-27 00:00:00
curl vulnerabilities
2023-03-20 00:00:00
cloudfoundry
cloudfoundry
USN-5964-2: curl vulnerabilities | Cloud Foundry
2023-04-24 00:00:00
USN-5964-1: curl vulnerabilities | Cloud Foundry
2023-04-29 00:00:00
debian
debian
[SECURITY] [DLA 3398-1] curl security update
2023-04-21 20:04:44
redos
redos
ROS-20230407-01
2023-04-07 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2221
2023-08-22 13:21:47
fedora
fedora
[SECURITY] Fedora 38 Update: curl-7.87.0-7.fc38
2023-03-29 00:19:18
[SECURITY] Fedora 36 Update: curl-7.82.0-14.fc36
2023-04-09 01:41:25
[SECURITY] Fedora 37 Update: curl-7.85.0-8.fc37
2023-03-27 02:01:30
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0371
2023-04-06 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0564
2023-04-06 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0603
2023-06-26 00:00:00
freebsd
freebsd
curl -- multiple vulnerabilities
2023-03-20 00:00:00
slackware
slackware
[slackware-security] curl
2023-03-20 19:35:43
mageia
mageia
Updated curl packages fix security vulnerability
2023-09-25 01:16:18
aix
aix
Multiple vulnerabilities cURL libcurl affect AIX
2023-06-29 09:35:59
gentoo
gentoo
curl: Multiple Vulnerabilities
2023-10-11 00:00:00
ics
ics
Siemens SINEC NMS
2024-02-15 12:00:00
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47