ALSA-2024:5654

[ALSA-2024:5654] Moderate: curl security update

Type:

security

Severity:

moderate

Release date:

2024-08-21

Description:

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.

Security Fix(es):

* curl: HTTP/2 push headers memory-leak (CVE-2024-2398)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libcurl-devel-7.61.1-34.el8_10.2.aarch64.rpm	6637394c379e60213cd93af1d06e99636a3d137182a8d0a856719e0ea57bee2b
aarch64	libcurl-minimal-7.61.1-34.el8_10.2.aarch64.rpm	7de414bcd2039ed52350c4a75ebbbfcaa11a7996da38c11f1418a4822d7a9054
aarch64	libcurl-7.61.1-34.el8_10.2.aarch64.rpm	ac6b34a2cf7f5f5b6b3bd12d676801d34084d9889e8da120a0dc62ffc3117753
aarch64	curl-7.61.1-34.el8_10.2.aarch64.rpm	ee478acaef4066178a53bbd6029270b298528a3674effcaba0e633ec05e8ad18
i686	libcurl-minimal-7.61.1-34.el8_10.2.i686.rpm	20d117bc4272355a9f29799d706eda2492a668c7b4025f255e9230433f939c8f
i686	libcurl-devel-7.61.1-34.el8_10.2.i686.rpm	7a8323cc556a952420d9c6367e96e5bb3ca456acdcd331b4ebac88111ed8f0a3
i686	libcurl-7.61.1-34.el8_10.2.i686.rpm	daf6f4755e1998c30c2bc5aa511bcb3c33a043d5cb64a639a808f9459edeb336
ppc64le	libcurl-devel-7.61.1-34.el8_10.2.ppc64le.rpm	7211be7e9a1a65054ba2134889f1bba07b89b545280d49233c9962fc5ef72b95
ppc64le	libcurl-7.61.1-34.el8_10.2.ppc64le.rpm	9b0ddfb2451811105230f3b30dcb2c558f649718afe5900e35eb525548179a87
ppc64le	curl-7.61.1-34.el8_10.2.ppc64le.rpm	d38b196cbf2f02bd865328b001c91ecd02af5d7b6775bb72d38c3258fca67290
ppc64le	libcurl-minimal-7.61.1-34.el8_10.2.ppc64le.rpm	f231d3c461d64a6eab5a8a6b59f2f558f595498db5b8efa380a535529ff01e7f
s390x	libcurl-7.61.1-34.el8_10.2.s390x.rpm	b1cb5414f5f70d33ff42eea8b406bc40a3fdcff130002b519887fc7f8623cace
s390x	libcurl-devel-7.61.1-34.el8_10.2.s390x.rpm	f5f435199346525d332c12dbe674e12018471e35810b959b42fa3def2dcc1d58
s390x	curl-7.61.1-34.el8_10.2.s390x.rpm	fe8d8b1622357b976f0327a7606eb667d189e4eed7e715040568e76ff31f1658
s390x	libcurl-minimal-7.61.1-34.el8_10.2.s390x.rpm	ff648db36f62089f9dfa29549a71fdf520f2f92b12669f6d83c8cf727629985c
x86_64	libcurl-7.61.1-34.el8_10.2.x86_64.rpm	05a9256c24867f5dae532675497403767d6c2a2031c43332fd7a9396d716fc18
x86_64	libcurl-devel-7.61.1-34.el8_10.2.x86_64.rpm	176e0d61f8a733412fff4467f3415d5bd918c164eb8a8c05d75b255bd2ed31cd
x86_64	curl-7.61.1-34.el8_10.2.x86_64.rpm	6ca2761ff11f2d0dd02053c378fd968ddc8437ea5ca10886300593a9a16f5696
x86_64	libcurl-minimal-7.61.1-34.el8_10.2.x86_64.rpm	ce791fa2225bbd606ee2ff8756ee3864a72012707d5c41c4303fd65252776334

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.