ALSA-2023:1140

[ALSA-2023:1140] Moderate: curl security update

Type:

security

Severity:

moderate

Release date:

2023-03-13

Description:

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.

Security Fix(es):

* curl: HTTP multi-header compression denial of service (CVE-2023-23916)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libcurl-devel-7.61.1-25.el8_7.3.aarch64.rpm	1deadcde7c71f2869d1390cc1c8a0a0b2e43c8293e709741970db0d477bfa4f8
aarch64	libcurl-minimal-7.61.1-25.el8_7.3.aarch64.rpm	3d705ff3556ad74c3f96d67ce54a7e4310c9baa91150fe9adc3044deb9692995
aarch64	libcurl-7.61.1-25.el8_7.3.aarch64.rpm	3fddb83667f6967a7eeeeafd40322f79dce36f6d8314db1ee58185d898b65678
aarch64	curl-7.61.1-25.el8_7.3.aarch64.rpm	9b9d649e0b75d8c80e3fdfc43a6f204afaf8975414133597387127acd40b26b8
i686	libcurl-devel-7.61.1-25.el8_7.3.i686.rpm	101fe72e9f68978cd9965f00b3e7f09ac583e642d352a4b072e25ea740793283
i686	libcurl-minimal-7.61.1-25.el8_7.3.i686.rpm	3b275a9e919c978760e6616d034de77def719eb3d74a81553b934736a99947e5
i686	libcurl-7.61.1-25.el8_7.3.i686.rpm	7d6b580613bfe18cf919219bcbfddecfd717ce374e8144a0d88570b1a027b291
ppc64le	curl-7.61.1-25.el8_7.3.ppc64le.rpm	30279c9632f2aa617996cb7ba3f46c2ab81cf1654b330f475798911ea0f7a8ac
ppc64le	libcurl-devel-7.61.1-25.el8_7.3.ppc64le.rpm	c01dde93aee8b2ae686f9dd0325cac6c8a9770036394c84eb072537edc045b24
ppc64le	libcurl-minimal-7.61.1-25.el8_7.3.ppc64le.rpm	d28c84415d2c2141c2ce4b8fac374550b0f32ec28724a5d0c15e3553d5af588f
ppc64le	libcurl-7.61.1-25.el8_7.3.ppc64le.rpm	ecb14de4861af88be19268ff974189e3a978c4e6169895997088dcf341b63d0a
s390x	libcurl-devel-7.61.1-25.el8_7.3.s390x.rpm	00e65fad6f5ce216b33150f84ed51b43d0f8e5339c532f3c6a8394020fd8c982
s390x	libcurl-7.61.1-25.el8_7.3.s390x.rpm	759ffbdfc804fe491eb73d8466457fe127132b3fba23ee638d173db3e409f814
s390x	curl-7.61.1-25.el8_7.3.s390x.rpm	cf14b97f5e2b865c6651b5743422b4ece5de4846a116d517d836f3e1b044d359
s390x	libcurl-minimal-7.61.1-25.el8_7.3.s390x.rpm	fc430523cb7b820a40f3e2bbebe7a8b09eeb074fc877deaa928bbd7183f76275
x86_64	libcurl-minimal-7.61.1-25.el8_7.3.x86_64.rpm	31e61a228da4ed8f0512569fcc296a835a68f304510e092ec4ec1c4342eae663
x86_64	curl-7.61.1-25.el8_7.3.x86_64.rpm	7248acd88691c33e6790c83355a7a6b48e53dc41e362bbda553e43a83f8e19a8
x86_64	libcurl-7.61.1-25.el8_7.3.x86_64.rpm	a787564bbf2ffd66c4c021f9f2c9f751fab7546cdd6ae6a7d83ae2ec0f7f206e
x86_64	libcurl-devel-7.61.1-25.el8_7.3.x86_64.rpm	b1013032fa484aa3e22e18da50ae74213866cd62db66810c595d36187c8f00e6

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.