ALSA-2024:5529

[ALSA-2024:5529] Moderate: curl security update

Type:

security

Severity:

moderate

Release date:

2024-08-21

Description:

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.

Security Fix(es):

* curl: HTTP/2 push headers memory-leak (CVE-2024-2398)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	curl-7.76.1-29.el9_4.1.aarch64.rpm	5c2a88a9f36f289aea30d04e1aeb7e6c5fac31d73cfb45f997ee245e547ff7aa
aarch64	libcurl-7.76.1-29.el9_4.1.aarch64.rpm	61668d7c0408939b4015855f4f6d76c7887c599e9626b89216f1551399acf0bf
aarch64	libcurl-devel-7.76.1-29.el9_4.1.aarch64.rpm	6c3834bbdc38ae78f153bcba3188753c90f108e9a165c7f0e35834440ec7ca39
aarch64	libcurl-minimal-7.76.1-29.el9_4.1.aarch64.rpm	8d01a1668e168c661785500ba210d434c00af5fe24021ec52735d892a3dfef0c
aarch64	curl-minimal-7.76.1-29.el9_4.1.aarch64.rpm	c25396f1bb054ea75e6e91c64b267d677eba0c4eceb306025e07b55aa0d36543
i686	libcurl-minimal-7.76.1-29.el9_4.1.i686.rpm	2a7e89ebad2ae969c38f176884fb0a866be3135b145c5a65bc7040a114c2a9b9
i686	libcurl-devel-7.76.1-29.el9_4.1.i686.rpm	77f965924f9dd3d337a91cec6d2b93988ed36a73e195362b8588ac1e34389fe0
i686	libcurl-7.76.1-29.el9_4.1.i686.rpm	95b7d63c29cf2f1df1ea03b707e95fc06cabd02e5386ef6d015283313dbf2307
ppc64le	libcurl-minimal-7.76.1-29.el9_4.1.ppc64le.rpm	05c56aa79d15157bed6fff382a0b4c081dafe2ee62a979d58a89ba96120f44fb
ppc64le	libcurl-7.76.1-29.el9_4.1.ppc64le.rpm	18a2527f32c9d2db46044f0df9e044508f28de98f6661c85b562382565766b29
ppc64le	libcurl-devel-7.76.1-29.el9_4.1.ppc64le.rpm	1f83c14cedd3d033263b4a739be8a711563e237b836f3064972dd887d7aff585
ppc64le	curl-minimal-7.76.1-29.el9_4.1.ppc64le.rpm	8348cb52fe81f0cfd460a6e30db5f6dee3d32591ba7f902196850252c0f9ef4e
ppc64le	curl-7.76.1-29.el9_4.1.ppc64le.rpm	a9d27b04591673e310a07db8cca9bbdd42bf48e10b33b6e7865b753223bb4b27
s390x	libcurl-devel-7.76.1-29.el9_4.1.s390x.rpm	27d20f0224db2d2c93d72b4da3e4b73a6afa7534b33d570b8413737dc03fa533
s390x	curl-7.76.1-29.el9_4.1.s390x.rpm	6b75a4caff38f00e7999ea171ca08f80f9c9bd93d4a25f17b0b9129208ea80da
s390x	libcurl-minimal-7.76.1-29.el9_4.1.s390x.rpm	931d4499aa58dd74326dccfe030e2fe9eeddd15a3d8955540cacdd6e2bb43ca7
s390x	libcurl-7.76.1-29.el9_4.1.s390x.rpm	be676add64b06edd4b7d6e0a3b87445c1f8067451ae238aa07a78c93eb3c44f2
s390x	curl-minimal-7.76.1-29.el9_4.1.s390x.rpm	df0f10be5ef4d137e1eecbd6e7dc89e18b253f53f40c645cc7c33317398aa08e
x86_64	libcurl-devel-7.76.1-29.el9_4.1.x86_64.rpm	8d92691faa29c244c407a1df4fd0f3f9bc64613fb66162a9fe24c5f45eeca2cb
x86_64	libcurl-minimal-7.76.1-29.el9_4.1.x86_64.rpm	b249d11140e43e455584aef13747853e864f6334e917c1621c9d60f8216deb92
x86_64	curl-minimal-7.76.1-29.el9_4.1.x86_64.rpm	b2ee6bc325540d02367c07c038c13b65184e1d96c8a2cd1a2d2d24ff050a4f42
x86_64	curl-7.76.1-29.el9_4.1.x86_64.rpm	c756aeac37a7da10ab234e4d46f013bd0ec79742268bdbaacb7e719c09287be2
x86_64	libcurl-7.76.1-29.el9_4.1.x86_64.rpm	d761e726fb0d82c71239f4dd60385a822d2dcbe826d51b0964c4c8cf2d5b0d50

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.