ELSA-2025-23383

ELSA-2025-23383 - curl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2025-12-18

Description

[7.61.1-34.el8_10.9]
- cookie: don't treat the leading slash as trailing (CVE-2025-9086)
Resolves: RHEL-121655

Related CVEs

CVE-2025-9086

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	curl-7.61.1-34.el8_10.9.src.rpm	20f45e6b00d547719e8f3358f7d472ba8ac64e4e302050a4742681d5f00f6067	-	ol8_aarch64_baseos_latest
	curl-7.61.1-34.el8_10.9.src.rpm	20f45e6b00d547719e8f3358f7d472ba8ac64e4e302050a4742681d5f00f6067	-	ol8_aarch64_u10_baseos_patch
	curl-7.61.1-34.el8_10.9.aarch64.rpm	01e16b6e6b47c0c28b8fd9f2ece5cf02f1abcff22dfd42aa2d840ee639f76635	-	ol8_aarch64_baseos_latest
	curl-7.61.1-34.el8_10.9.aarch64.rpm	01e16b6e6b47c0c28b8fd9f2ece5cf02f1abcff22dfd42aa2d840ee639f76635	-	ol8_aarch64_u10_baseos_patch
	libcurl-7.61.1-34.el8_10.9.aarch64.rpm	102c383cd693c23b0b9ebd51de7127bd9e23130fa7ad8cc02097cd797bfe5066	-	ol8_aarch64_baseos_latest
	libcurl-7.61.1-34.el8_10.9.aarch64.rpm	102c383cd693c23b0b9ebd51de7127bd9e23130fa7ad8cc02097cd797bfe5066	-	ol8_aarch64_u10_baseos_patch
	libcurl-devel-7.61.1-34.el8_10.9.aarch64.rpm	6e0af3cf6c14e5291718243239b557857500e7e23bbf5cbe3e4b26301bf4df86	-	ol8_aarch64_baseos_latest
	libcurl-devel-7.61.1-34.el8_10.9.aarch64.rpm	6e0af3cf6c14e5291718243239b557857500e7e23bbf5cbe3e4b26301bf4df86	-	ol8_aarch64_u10_baseos_patch
	libcurl-minimal-7.61.1-34.el8_10.9.aarch64.rpm	8a29d946a82676a64e6155b7f219cc7ae641933b460f64c2ea6201187bac705f	-	ol8_aarch64_baseos_latest
	libcurl-minimal-7.61.1-34.el8_10.9.aarch64.rpm	8a29d946a82676a64e6155b7f219cc7ae641933b460f64c2ea6201187bac705f	-	ol8_aarch64_u10_baseos_patch
Oracle Linux 8 (x86_64)	curl-7.61.1-34.el8_10.9.src.rpm	20f45e6b00d547719e8f3358f7d472ba8ac64e4e302050a4742681d5f00f6067	-	ol8_x86_64_baseos_latest
	curl-7.61.1-34.el8_10.9.src.rpm	20f45e6b00d547719e8f3358f7d472ba8ac64e4e302050a4742681d5f00f6067	-	ol8_x86_64_u10_baseos_patch
	curl-7.61.1-34.el8_10.9.x86_64.rpm	b18f4df6f848170cac2056e3860ada7fb2820eb70c5be896420f1e255409998c	-	ol8_x86_64_baseos_latest
	curl-7.61.1-34.el8_10.9.x86_64.rpm	b18f4df6f848170cac2056e3860ada7fb2820eb70c5be896420f1e255409998c	-	ol8_x86_64_u10_baseos_patch
	libcurl-7.61.1-34.el8_10.9.i686.rpm	24d94518a66b3782aa09979e4e68e1966b2cf839d679dafbb6eaf59467e6ba4a	-	ol8_x86_64_baseos_latest
	libcurl-7.61.1-34.el8_10.9.i686.rpm	24d94518a66b3782aa09979e4e68e1966b2cf839d679dafbb6eaf59467e6ba4a	-	ol8_x86_64_u10_baseos_patch
	libcurl-7.61.1-34.el8_10.9.x86_64.rpm	7010d9a691dbd7ee20954df9db0704c86a26c96ff902f987fbbaa708d44c5e6c	-	ol8_x86_64_baseos_latest
	libcurl-7.61.1-34.el8_10.9.x86_64.rpm	7010d9a691dbd7ee20954df9db0704c86a26c96ff902f987fbbaa708d44c5e6c	-	ol8_x86_64_u10_baseos_patch
	libcurl-devel-7.61.1-34.el8_10.9.i686.rpm	ffd1c09a0eb43a177ce3f3dc5ada095b0e6ebb555ab47caba9899843d9fc6752	-	ol8_x86_64_baseos_latest
	libcurl-devel-7.61.1-34.el8_10.9.i686.rpm	ffd1c09a0eb43a177ce3f3dc5ada095b0e6ebb555ab47caba9899843d9fc6752	-	ol8_x86_64_u10_baseos_patch
	libcurl-devel-7.61.1-34.el8_10.9.x86_64.rpm	fb1e7aafccbb616890f6ca8ca5ab80d2a2b10d25cf833f3101f0c81948d363b5	-	ol8_x86_64_baseos_latest
	libcurl-devel-7.61.1-34.el8_10.9.x86_64.rpm	fb1e7aafccbb616890f6ca8ca5ab80d2a2b10d25cf833f3101f0c81948d363b5	-	ol8_x86_64_u10_baseos_patch
	libcurl-minimal-7.61.1-34.el8_10.9.i686.rpm	3eecd9405f8fe5f436ab8481010ba2747e32a3d8227822709f589eeec22a25b6	-	ol8_x86_64_baseos_latest
	libcurl-minimal-7.61.1-34.el8_10.9.i686.rpm	3eecd9405f8fe5f436ab8481010ba2747e32a3d8227822709f589eeec22a25b6	-	ol8_x86_64_u10_baseos_patch
	libcurl-minimal-7.61.1-34.el8_10.9.x86_64.rpm	e2de6ef43cd630db5de647f971c5417643294bddeb93524dfe8919523b76b04e	-	ol8_x86_64_baseos_latest
	libcurl-minimal-7.61.1-34.el8_10.9.x86_64.rpm	e2de6ef43cd630db5de647f971c5417643294bddeb93524dfe8919523b76b04e	-	ol8_x86_64_u10_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team