ALSA-2023:3106

[ALSA-2023:3106] Moderate: curl security and bug fix update

Type:

security

Severity:

moderate

Release date:

2023-05-19

Description:

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.

Security Fix(es):

* curl: FTP too eager connection reuse (CVE-2023-27535)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* Cannot upload files to Jscape SFTP server: file gets created empty (BZ#2188029)

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	curl-7.61.1-30.el8_8.2.aarch64.rpm	2658bdff86b48167ef49eaac7d39ed300a0e6b5c969b8708fc137e60cd88dd23
aarch64	libcurl-devel-7.61.1-30.el8_8.2.aarch64.rpm	7c08dceb92abc7772dd8877e8bd4e6412e32b51843aea81f5be2b592d3456073
aarch64	libcurl-7.61.1-30.el8_8.2.aarch64.rpm	a5b893dc96af354b0aa36f2818e0e7df96b0fe5b7bf1fd787c1210dbe380b1eb
aarch64	libcurl-minimal-7.61.1-30.el8_8.2.aarch64.rpm	b5992f5564f960d96d4542e8bbd4db7bc39b4c7b469d3a686909413b3edbce8c
i686	libcurl-minimal-7.61.1-30.el8_8.2.i686.rpm	24af21dfd93c016afc2fe2605e21a68edf07725837a414a67856ecec24bc8f20
i686	libcurl-7.61.1-30.el8_8.2.i686.rpm	a9aa301ce8a0963a67f0138fed13027b7bf3b0d4e154bb7c07d6f9ea45a8aa2b
i686	libcurl-devel-7.61.1-30.el8_8.2.i686.rpm	d0f62df6e60bb41eb544785743ea53ecc88665dff9bbe5e0dce1b3998530fb3a
ppc64le	libcurl-minimal-7.61.1-30.el8_8.2.ppc64le.rpm	496a0f262369df8523f06cc6d956c71c6f3a0937f4fc56d275c43287a124e08a
ppc64le	libcurl-devel-7.61.1-30.el8_8.2.ppc64le.rpm	66fc8e57aeaa2bdfb85c4784b9f975ff8da213243e4ac71fe5a51566cff3cc8e
ppc64le	libcurl-7.61.1-30.el8_8.2.ppc64le.rpm	96335a46f38c2507978c40773c9c3b41c161fbcaaaf20b89666972df8041c3a8
ppc64le	curl-7.61.1-30.el8_8.2.ppc64le.rpm	c044e0a6a342ea5ceb2616e6801d2d2dd06dd35f2942acc51207ae7b7ceb447f
s390x	libcurl-minimal-7.61.1-30.el8_8.2.s390x.rpm	1a2c5a42090aeb3d29d45b2776675dbaabecd73bb397b0e8984ba414b86d52bd
s390x	libcurl-7.61.1-30.el8_8.2.s390x.rpm	67e1bdc3e7321731dffece12de2518c6918302e90dbe1e96e62e04cc64ccd433
s390x	curl-7.61.1-30.el8_8.2.s390x.rpm	855667b53d56c22cfdcf118b88d5b3a1aed2a9cec63c1f541190809b98018432
s390x	libcurl-devel-7.61.1-30.el8_8.2.s390x.rpm	ea7eaaf233ce4cd992315b366c468babf092e08636200322f9673d5935940a7b
x86_64	curl-7.61.1-30.el8_8.2.x86_64.rpm	04e9eb4dcbf7d3085b892543ba8e6a9b25cdb2c6c715c687a006ddea77279e12
x86_64	libcurl-minimal-7.61.1-30.el8_8.2.x86_64.rpm	36970819e2bbcaf0a3fc2afcff2b6996152c8306d6abca3610233fc699ff5006
x86_64	libcurl-devel-7.61.1-30.el8_8.2.x86_64.rpm	6a75865a80aef0a2a69ecf4cb601d28bb16fcdfa1c87a86ccc00e7b0290cf8ba
x86_64	libcurl-7.61.1-30.el8_8.2.x86_64.rpm	b6187ad91b73d6d3db82ee99da52bb51c4d458d8811e0d3283c7147c5512836a

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.