ELSA-2021-4059

ULN >
Oracle Linux Errata repository >
ELSA-2021-4059

ELSA-2021-4059 - curl security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2021-11-02

Description

[7.61.1-18.el8_4.2]
- fix STARTTLS protocol injection via MITM (CVE-2021-22947)
- fix protocol downgrade required TLS bypass (CVE-2021-22946)

Related CVEs

CVE-2021-22947

CVE-2021-22946

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	curl-7.61.1-18.el8_4.2.src.rpm	0e24345011f7f4bdefa1bf372265c12a	-
	curl-7.61.1-18.el8_4.2.aarch64.rpm	b96d11cbac352ca90bb5bfed70cc4eb0	-
	libcurl-7.61.1-18.el8_4.2.aarch64.rpm	3645759145e1d1fff2570bb49d166a63	-
	libcurl-devel-7.61.1-18.el8_4.2.aarch64.rpm	7e530ebc9adc22470b6125e15a19e48e	-
	libcurl-minimal-7.61.1-18.el8_4.2.aarch64.rpm	4a2275f0e9b28bee78689ded45c55f48	-

Oracle Linux 8 (x86_64)	curl-7.61.1-18.el8_4.2.src.rpm	0e24345011f7f4bdefa1bf372265c12a	-
	curl-7.61.1-18.el8_4.2.x86_64.rpm	fcc925242dc08440146d5992c622834e	-
	libcurl-7.61.1-18.el8_4.2.i686.rpm	427d57b9caea602567dafbca16428996	-
	libcurl-7.61.1-18.el8_4.2.x86_64.rpm	ad978efbc4be13f4b2c73d02dd722326	-
	libcurl-devel-7.61.1-18.el8_4.2.i686.rpm	d7df6acde7788d7ae4083b786207bcb8	-
	libcurl-devel-7.61.1-18.el8_4.2.x86_64.rpm	9686a7463ef9227c4a050695cb8d178e	-
	libcurl-minimal-7.61.1-18.el8_4.2.i686.rpm	ee79a132b9810c4ca8276d273d8f0497	-
	libcurl-minimal-7.61.1-18.el8_4.2.x86_64.rpm	d5ff0f11e6f3766d0eef6f6e57b000a0	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691