ELSA-2026-1825

ULN >
Oracle Linux Errata repository >
ELSA-2026-1825

ELSA-2026-1825 - curl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-02-03

Description

[8.12.1-2.el10_1.2]
- openssl: respect system crypto policy for TLS max version (RHEL-128923)

[8.12.1-2.el10_1.1]
- cookie: don't treat the leading slash as trailing (CVE-2025-9086)
Resolves: RHEL-122689

Related CVEs

CVE-2025-9086

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 10 (aarch64)	curl-8.12.1-2.el10_1.2.src.rpm	30bbc3faac218d43f53cb8148ca054ec45c435c6a9d682564b7acc9b5d931e7d	-	ol10_aarch64_appstream
	curl-8.12.1-2.el10_1.2.src.rpm	30bbc3faac218d43f53cb8148ca054ec45c435c6a9d682564b7acc9b5d931e7d	-	ol10_aarch64_baseos_latest
	curl-8.12.1-2.el10_1.2.src.rpm	30bbc3faac218d43f53cb8148ca054ec45c435c6a9d682564b7acc9b5d931e7d	-	ol10_aarch64_u1_baseos_patch
	curl-8.12.1-2.el10_1.2.aarch64.rpm	0ae405357eb889c1677a5acf62a521e80c03a27239699a55983f821073c52fd6	-	ol10_aarch64_baseos_latest
	curl-8.12.1-2.el10_1.2.aarch64.rpm	0ae405357eb889c1677a5acf62a521e80c03a27239699a55983f821073c52fd6	-	ol10_aarch64_u1_baseos_patch
	libcurl-8.12.1-2.el10_1.2.aarch64.rpm	049757df30dcab8c338f3f63688b5ed3f6e1d5554b9a1b0d6a65812671f3cfef	-	ol10_aarch64_baseos_latest
	libcurl-8.12.1-2.el10_1.2.aarch64.rpm	049757df30dcab8c338f3f63688b5ed3f6e1d5554b9a1b0d6a65812671f3cfef	-	ol10_aarch64_u1_baseos_patch
	libcurl-devel-8.12.1-2.el10_1.2.aarch64.rpm	88a179b8a75e144f4ed8f3e34dd8e5ecde2e8949ed8adba708c1829efb8ab882	-	ol10_aarch64_appstream
	libcurl-minimal-8.12.1-2.el10_1.2.aarch64.rpm	24148517df14f703361494b8e0095af92cb8db4961d478a47751f2547643f2a4	-	ol10_aarch64_baseos_latest
	libcurl-minimal-8.12.1-2.el10_1.2.aarch64.rpm	24148517df14f703361494b8e0095af92cb8db4961d478a47751f2547643f2a4	-	ol10_aarch64_u1_baseos_patch

Oracle Linux 10 (x86_64)	curl-8.12.1-2.el10_1.2.src.rpm	30bbc3faac218d43f53cb8148ca054ec45c435c6a9d682564b7acc9b5d931e7d	-	ol10_x86_64_appstream
	curl-8.12.1-2.el10_1.2.src.rpm	30bbc3faac218d43f53cb8148ca054ec45c435c6a9d682564b7acc9b5d931e7d	-	ol10_x86_64_baseos_latest
	curl-8.12.1-2.el10_1.2.src.rpm	30bbc3faac218d43f53cb8148ca054ec45c435c6a9d682564b7acc9b5d931e7d	-	ol10_x86_64_u1_baseos_patch
	curl-8.12.1-2.el10_1.2.x86_64.rpm	83e40a1136ef567114e7f24b10fc28a5456e17631def950585d5530ecd527f38	-	ol10_x86_64_baseos_latest
	curl-8.12.1-2.el10_1.2.x86_64.rpm	83e40a1136ef567114e7f24b10fc28a5456e17631def950585d5530ecd527f38	-	ol10_x86_64_u1_baseos_patch
	libcurl-8.12.1-2.el10_1.2.x86_64.rpm	7c3e44de5b5bb6b50e91841b36b5e71b3201fe88400bdc5ad3fa6edd268c60af	-	ol10_x86_64_baseos_latest
	libcurl-8.12.1-2.el10_1.2.x86_64.rpm	7c3e44de5b5bb6b50e91841b36b5e71b3201fe88400bdc5ad3fa6edd268c60af	-	ol10_x86_64_u1_baseos_patch
	libcurl-devel-8.12.1-2.el10_1.2.x86_64.rpm	3c680b1eab50a9d1136713be9ead1b466ce4d43137c11f68adbb1836bf3d2271	-	ol10_x86_64_appstream
	libcurl-minimal-8.12.1-2.el10_1.2.x86_64.rpm	b1177547d2949000cf101b761eb30be150bf9a3550a6323d4fe3e24fe70812ab	-	ol10_x86_64_baseos_latest
	libcurl-minimal-8.12.1-2.el10_1.2.x86_64.rpm	b1177547d2949000cf101b761eb30be150bf9a3550a6323d4fe3e24fe70812ab	-	ol10_x86_64_u1_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691