Lucene search
RedHatRHSA-2023:3460HistoryJun 06, 2023 - 7:51 a.m.
(RHSA-2023:3460) Moderate: curl security update
2023-06-0607:51:41
access.redhat.com
13
rhsa-2023
curl
libcurl
http
ftp
ldap
security
update
denial of service
cvss
cve-2022-32206
cve-2023-23916
cvss score
acknowledgments
references
0.002 Low
EPSS
Percentile
59.1%
The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.
Security Fix(es):
-
curl: HTTP compression denial of service (CVE-2022-32206)
-
curl: HTTP multi-header compression denial of service (CVE-2023-23916)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | s390x | libcurl | < 7.61.1-18.el8_4.3 | libcurl-7.61.1-18.el8_4.3.s390x.rpm |
| RedHat | 8 | i686 | curl-debugsource | < 7.61.1-18.el8_4.3 | curl-debugsource-7.61.1-18.el8_4.3.i686.rpm |
| RedHat | 8 | s390x | libcurl-debuginfo | < 7.61.1-18.el8_4.3 | libcurl-debuginfo-7.61.1-18.el8_4.3.s390x.rpm |
| RedHat | 8 | x86_64 | libcurl | < 7.61.1-18.el8_4.3 | libcurl-7.61.1-18.el8_4.3.x86_64.rpm |
| RedHat | 8 | aarch64 | libcurl-devel | < 7.61.1-18.el8_4.3 | libcurl-devel-7.61.1-18.el8_4.3.aarch64.rpm |
| RedHat | 8 | s390x | libcurl-minimal | < 7.61.1-18.el8_4.3 | libcurl-minimal-7.61.1-18.el8_4.3.s390x.rpm |
| RedHat | 8 | x86_64 | libcurl-debuginfo | < 7.61.1-18.el8_4.3 | libcurl-debuginfo-7.61.1-18.el8_4.3.x86_64.rpm |
| RedHat | 8 | s390x | curl | < 7.61.1-18.el8_4.3 | curl-7.61.1-18.el8_4.3.s390x.rpm |
| RedHat | 8 | ppc64le | curl-debuginfo | < 7.61.1-18.el8_4.3 | curl-debuginfo-7.61.1-18.el8_4.3.ppc64le.rpm |
| RedHat | 8 | s390x | libcurl-devel | < 7.61.1-18.el8_4.3 | libcurl-devel-7.61.1-18.el8_4.3.s390x.rpm |
Related
nessus
nessus
RHEL 8 : curl (RHSA-2023:3460)
2023-06-06 00:00:00
RHEL 9 : curl (RHSA-2023:1701)
2023-04-11 00:00:00
RHEL 8 : curl (RHSA-2023:1842)
2023-04-20 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2221
2023-08-22 13:21:47
mageia
mageia
Updated curl packages fix security vulnerability
2023-02-21 00:25:36
Updated curl packages fix security vulnerability
2022-07-05 22:11:26
veracode
veracode
Denial Of Service (DoS)
2023-02-18 05:23:01
Denial Of Service (DoS)
2022-06-29 00:04:45
fedora
fedora
[SECURITY] Fedora 36 Update: curl-7.82.0-13.fc36
2023-02-28 02:02:43
[SECURITY] Fedora 37 Update: curl-7.85.0-6.fc37
2023-02-19 01:39:34
[SECURITY] Fedora 35 Update: curl-7.79.1-5.fc35
2022-07-15 01:36:25
redhat
redhat
(RHSA-2023:1842) Moderate: curl security update
2023-04-18 16:09:24
(RHSA-2023:1140) Moderate: curl security update
2023-03-07 13:28:28
(RHSA-2023:1701) Moderate: curl security update
2023-04-11 13:44:27
ibm
ibm
alpinelinux
alpinelinux
CVE-2023-23916
2023-02-23 20:15:13
CVE-2022-32206
2022-07-07 13:15:08
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0054)
2023-03-28 00:00:00
Fedora: Security Advisory for curl (FEDORA-2023-94df30cbec)
2023-03-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0425-1)
2023-02-16 00:00:00
cvelist
cvelist
CVE-2023-23916
2023-02-23 00:00:00
CVE-2022-32206
2022-07-07 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-23916 affecting package cmake 3.21.4-3
2024-06-18 09:08:13
CVE-2023-23916 affecting package curl 7.86.0-3
2023-04-07 04:59:06
CVE-2023-23916 affecting package mysql for versions less than 8.0.33-1
2023-05-03 16:24:32
osv
osv
Moderate: curl security update
2023-03-08 16:37:30
Moderate: curl security update
2023-04-11 00:00:00
CVE-2023-23916
2023-02-23 20:15:13
cve
cve
CVE-2023-23916
2023-02-23 20:15:13
CVE-2022-32206
2022-07-07 13:15:08
rocky
rocky
curl security update
2023-03-08 16:37:30
curl security update
2022-08-24 15:12:40
curl security update
2022-08-24 14:56:48
prion
prion
Design/Logic Flaw
2023-02-23 20:15:00
Design/Logic Flaw
2022-07-07 13:15:00
debiancve
debiancve
CVE-2023-23916
2023-02-23 20:15:13
CVE-2022-32206
2022-07-07 13:15:08
ubuntucve
ubuntucve
CVE-2023-23916
2023-02-15 00:00:00
CVE-2022-32206
2022-06-27 00:00:00
redhatcve
redhatcve
CVE-2023-23916
2023-02-17 11:57:23
CVE-2022-32206
2022-06-28 03:35:40
almalinux
almalinux
Moderate: curl security update
2023-03-07 00:00:00
Moderate: curl security update
2023-04-11 00:00:00
Moderate: curl security update
2022-08-24 00:00:00
oraclelinux
oraclelinux
curl security update
2023-04-11 00:00:00
curl security update
2023-03-07 00:00:00
curl security update
2022-08-24 00:00:00
nvd
nvd
CVE-2023-23916
2023-02-23 20:15:13
CVE-2022-32206
2022-07-07 13:15:08
debian
debian
[SECURITY] [DLA 3341-1] curl security update
2023-02-24 11:17:04
[SECURITY] [DSA 5365-1] curl security update
2023-02-27 22:00:09
hackerone
hackerone
Internet Bug Bounty: HTTP multi-header compression denial of service
2023-02-24 15:01:59
curl: CVE-2022-32206: HTTP compression denial of service
2022-05-15 01:56:48
Internet Bug Bounty: CVE-2022-32206: HTTP compression denial of service
2022-06-27 07:03:40
suse
suse
Security update for curl (important)
2022-07-07 00:00:00
Security update for curl (important)
2022-09-01 00:00:00
Security update for curl (important)
2022-07-06 00:00:00
amazon
amazon
slackware
slackware
[slackware-security] curl
2023-02-15 19:51:33
[slackware-security] curl
2022-06-28 19:27:52
freebsd
freebsd
curl -- multiple vulnerabilities
2023-02-15 00:00:00
cURL -- Multiple vulnerabilities
2022-06-27 00:00:00
cloudfoundry
cloudfoundry
USN-5891-1: curl vulnerabilities | Cloud Foundry
2023-04-20 00:00:00
USN-5495-1: curl vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
ubuntu
ubuntu
curl vulnerabilities
2023-02-27 00:00:00
curl vulnerabilities
2022-06-27 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0412
2022-06-30 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0412
2022-06-30 00:00:00
Moderate Photon OS Security Update - PHSA-2022-0491
2022-06-30 00:00:00
aix
aix
Multiple vulnerabilities cURL libcurl affect AIX
2023-06-29 09:35:59
ics
ics
Siemens SCALANCE SC-600 Family
2022-12-15 12:00:00