ALSA-2023:1701

[ALSA-2023:1701] Moderate: curl security update

Type:

security

Severity:

moderate

Release date:

2023-04-20

Description:

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.

Security Fix(es):

* curl: HTTP multi-header compression denial of service (CVE-2023-23916)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libcurl-devel-7.76.1-19.el9_1.2.aarch64.rpm	12dd4cc9022b4f04e537dad8b6a6065c17d06bc6cb5b42fddbb42c8136f5d22b
aarch64	libcurl-7.76.1-19.el9_1.2.aarch64.rpm	73369597c550750b93ec1d448f7e078e2768d8f7cbcadf1affc680ebac1223f9
aarch64	libcurl-minimal-7.76.1-19.el9_1.2.aarch64.rpm	9977967fb741a16109a20d68ebace33c34792b485d064ac243291b2c1631721f
aarch64	curl-7.76.1-19.el9_1.2.aarch64.rpm	a1c0f91fd139f6b9b33b58cc588c6b07858cf48ea83c8a5317189d0dd665dd40
aarch64	curl-minimal-7.76.1-19.el9_1.2.aarch64.rpm	fa8d4712fb7acaaceebb5f58d0652b27c257b8aa196a97cb0063ae4cc969fe63
i686	libcurl-devel-7.76.1-19.el9_1.2.i686.rpm	1f8f18922b3efd884f91c7ce4ce682024bb12d55d98679d12f16995622b457b1
i686	libcurl-7.76.1-19.el9_1.2.i686.rpm	3600dec0ee5207b9a5bc67b00b4b3d49ad4fdcee2a887fe891d71c5924d2510a
i686	libcurl-minimal-7.76.1-19.el9_1.2.i686.rpm	60d6a1adab3976b5a3f8f83167abf8022c441c4f87bbd3db6b7052ca7d8f2a71
ppc64le	libcurl-7.76.1-19.el9_1.2.ppc64le.rpm	0d0db3147d393910a4f08b4b06934321864f8b330435ebb52b1c575c2e82e78e
ppc64le	curl-7.76.1-19.el9_1.2.ppc64le.rpm	2076b0459a38476724767bf83d0c5e48ea1ac6c1b8195e7d37c0ff4c3af73ffc
ppc64le	curl-minimal-7.76.1-19.el9_1.2.ppc64le.rpm	75705bd763cd04491029784d801946c560fccf15ed476f2ba7eeba4e4fbc5ca3
ppc64le	libcurl-devel-7.76.1-19.el9_1.2.ppc64le.rpm	a802e5f9049c639d86dde152b6174fc1718595e4c34db5564d831d8273c7fefc
ppc64le	libcurl-minimal-7.76.1-19.el9_1.2.ppc64le.rpm	c117b8b112a3324798a9723aadfee8141672aee34971dad24b02db1f2bcae4ef
s390x	libcurl-7.76.1-19.el9_1.2.s390x.rpm	0760913d8ddd83e75a94d3aa1b4ef2cf4afb1e0d346431a3ff31bf9ae01cf2df
s390x	curl-7.76.1-19.el9_1.2.s390x.rpm	2712fe1f794fa8cf33d504b4ea8ef95fe7797f8eda4b6b8f442bf7aa9cbcf3c5
s390x	libcurl-minimal-7.76.1-19.el9_1.2.s390x.rpm	a6373dd26db2d2c95525705891b9a11a5d54d5c9d1d647e8ce0744cc8c2f45e9
s390x	libcurl-devel-7.76.1-19.el9_1.2.s390x.rpm	ac6c9f72c1f5bcc01d81b294c6e8b919dd8e1e4711fe4bd977f5b907c89e0291
s390x	curl-minimal-7.76.1-19.el9_1.2.s390x.rpm	aed50aeb488500ed5538fb042264543cda0455d54ea6d0f81d7e628802374942
x86_64	libcurl-7.76.1-19.el9_1.2.x86_64.rpm	213f6d0e6f6a6cfeb32e79695d89f46bf2bc97f3993e3bf95ecdb272023015e9
x86_64	curl-7.76.1-19.el9_1.2.x86_64.rpm	638d19de486cc246fd0071202f734e10e7ca65a7cbb0a9f3b03e952dc79407e9
x86_64	libcurl-devel-7.76.1-19.el9_1.2.x86_64.rpm	859bb8063803c4c06220503116ec3f8752a503fd00bb5d7f7e770a2f051850b7
x86_64	libcurl-minimal-7.76.1-19.el9_1.2.x86_64.rpm	d4baad9e47da814763bf14f16c414ea9328439fb9a14f86d54d086c80c52b0c9
x86_64	curl-minimal-7.76.1-19.el9_1.2.x86_64.rpm	fb230c4260adadb5f2cc2cbe70295588dc77d776de5414a45cc03d1e3d60e3fc

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.