ELSA-2022-5313

ULN >
Oracle Linux Errata repository >
ELSA-2022-5313

ELSA-2022-5313 - curl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2022-06-30

Description

[7.61.1-22.el8_6.3]
- fix too eager reuse of TLS and SSH connections (CVE-2022-27782)

[7.61.1-22.el8_6.2]
- fix invalid type in printf() argument detected by Coverity

[7.61.1-22.el8_6.1]
- fix credential leak on redirect (CVE-2022-27774)
- fix auth/cookie leak on redirect (CVE-2022-27776)
- fix OAUTH2 bearer bypass in connection re-use (CVE-2022-22576)

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	curl-7.61.1-22.el8_6.3.src.rpm	42a9ad7d3129ab406fdb9aa20c41f777947b4bdb4c6341a77e51c97b954771e1	-	ol8_aarch64_baseos_latest
	curl-7.61.1-22.el8_6.3.src.rpm	42a9ad7d3129ab406fdb9aa20c41f777947b4bdb4c6341a77e51c97b954771e1	-	ol8_aarch64_u6_baseos_patch
	curl-7.61.1-22.el8_6.3.aarch64.rpm	75d01f22f979520a06f1473ce6ca5b14f72f79d9ae72b4cc05224f6d0a9638bd	-	ol8_aarch64_baseos_latest
	curl-7.61.1-22.el8_6.3.aarch64.rpm	75d01f22f979520a06f1473ce6ca5b14f72f79d9ae72b4cc05224f6d0a9638bd	-	ol8_aarch64_u6_baseos_patch
	libcurl-7.61.1-22.el8_6.3.aarch64.rpm	4dcc39d652efa22a0c3894f65a7c7afaea18e6c0173cbef8c2082722d9faf90b	-	ol8_aarch64_baseos_latest
	libcurl-7.61.1-22.el8_6.3.aarch64.rpm	4dcc39d652efa22a0c3894f65a7c7afaea18e6c0173cbef8c2082722d9faf90b	-	ol8_aarch64_u6_baseos_patch
	libcurl-devel-7.61.1-22.el8_6.3.aarch64.rpm	d183b1fffb6b6109a054fb563291e5cc9897e956ac5d09e2c87b8d6cea3bb50b	-	ol8_aarch64_baseos_latest
	libcurl-devel-7.61.1-22.el8_6.3.aarch64.rpm	d183b1fffb6b6109a054fb563291e5cc9897e956ac5d09e2c87b8d6cea3bb50b	-	ol8_aarch64_u6_baseos_patch
	libcurl-minimal-7.61.1-22.el8_6.3.aarch64.rpm	044e7ee398385a5bf0ddf24e4c9903798582ba67c572233332a501315be8543d	-	ol8_aarch64_baseos_latest
	libcurl-minimal-7.61.1-22.el8_6.3.aarch64.rpm	044e7ee398385a5bf0ddf24e4c9903798582ba67c572233332a501315be8543d	-	ol8_aarch64_u6_baseos_patch

Oracle Linux 8 (x86_64)	curl-7.61.1-22.el8_6.3.src.rpm	42a9ad7d3129ab406fdb9aa20c41f777947b4bdb4c6341a77e51c97b954771e1	-	ol8_x86_64_baseos_latest
	curl-7.61.1-22.el8_6.3.src.rpm	42a9ad7d3129ab406fdb9aa20c41f777947b4bdb4c6341a77e51c97b954771e1	-	ol8_x86_64_u6_baseos_patch
	curl-7.61.1-22.el8_6.3.x86_64.rpm	9fa466ab779431c73d98c19cf3e82f42ac364f6821d1c92ae9d903318c36e7a8	-	ol8_x86_64_baseos_latest
	curl-7.61.1-22.el8_6.3.x86_64.rpm	9fa466ab779431c73d98c19cf3e82f42ac364f6821d1c92ae9d903318c36e7a8	-	ol8_x86_64_u6_baseos_patch
	libcurl-7.61.1-22.el8_6.3.i686.rpm	0d9733ef9bfbc4f49e10b187cdb9fa4605cf10e16cbcff455bb6b6af847804fa	-	ol8_x86_64_baseos_latest
	libcurl-7.61.1-22.el8_6.3.i686.rpm	0d9733ef9bfbc4f49e10b187cdb9fa4605cf10e16cbcff455bb6b6af847804fa	-	ol8_x86_64_u6_baseos_patch
	libcurl-7.61.1-22.el8_6.3.x86_64.rpm	b2a89eeb620a7a82f5f6a83945fa8809b58b2ba9f01239145dcb83eb043df9a0	-	ol8_x86_64_baseos_latest
	libcurl-7.61.1-22.el8_6.3.x86_64.rpm	b2a89eeb620a7a82f5f6a83945fa8809b58b2ba9f01239145dcb83eb043df9a0	-	ol8_x86_64_u6_baseos_patch
	libcurl-devel-7.61.1-22.el8_6.3.i686.rpm	d8d63cba4a08b52404ca00cad3c0e765f72ad4fbbc3f56a8a9d817e6be12160e	-	ol8_x86_64_baseos_latest
	libcurl-devel-7.61.1-22.el8_6.3.i686.rpm	d8d63cba4a08b52404ca00cad3c0e765f72ad4fbbc3f56a8a9d817e6be12160e	-	ol8_x86_64_u6_baseos_patch
	libcurl-devel-7.61.1-22.el8_6.3.x86_64.rpm	7637e9936922006baa856d0a29d37675aa335368d17c0472ccc2020f2dd6dd94	-	ol8_x86_64_baseos_latest
	libcurl-devel-7.61.1-22.el8_6.3.x86_64.rpm	7637e9936922006baa856d0a29d37675aa335368d17c0472ccc2020f2dd6dd94	-	ol8_x86_64_u6_baseos_patch
	libcurl-minimal-7.61.1-22.el8_6.3.i686.rpm	5fe708505b4bba952e1eb11929da39c449e4be97ae663cd502bb21669be2ef6a	-	ol8_x86_64_baseos_latest
	libcurl-minimal-7.61.1-22.el8_6.3.i686.rpm	5fe708505b4bba952e1eb11929da39c449e4be97ae663cd502bb21669be2ef6a	-	ol8_x86_64_u6_baseos_patch
	libcurl-minimal-7.61.1-22.el8_6.3.x86_64.rpm	997f7a89fae58faa51718d36d85c75962d4366d8ac20becc914a2f7a3860666c	-	ol8_x86_64_baseos_latest
	libcurl-minimal-7.61.1-22.el8_6.3.x86_64.rpm	997f7a89fae58faa51718d36d85c75962d4366d8ac20becc914a2f7a3860666c	-	ol8_x86_64_u6_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691