ELSA-2023-2478

ULN >
Oracle Linux Errata repository >
ELSA-2023-2478

ELSA-2023-2478 - curl security update

Type:	SECURITY
Impact:	LOW
Release Date:	2023-05-15

Description

[7.76.1-23]
- fix HTTP multi-header compression denial of service (CVE-2023-23916)

[7.76.1-22]
- smb/telnet: fix use-after-free when HTTP proxy denies tunnel (CVE-2022-43552)

[7.76.1-21]
- fix POST following PUT confusion (CVE-2022-32221)

[7.76.1-20]
- control code in cookie denial of service (CVE-2022-35252)

Related CVEs

CVE-2022-43552

CVE-2022-35252

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_aarch64_appstream
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_aarch64_appstream_developer
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_aarch64_baseos_developer
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_aarch64_baseos_latest
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_aarch64_u2_baseos_base
	curl-7.76.1-23.el9.aarch64.rpm	a371b258f1a2d7a3a4595f204056760a4ad040150042f9adb410417db8ab9c46	-	ol9_aarch64_baseos_developer
	curl-7.76.1-23.el9.aarch64.rpm	a371b258f1a2d7a3a4595f204056760a4ad040150042f9adb410417db8ab9c46	-	ol9_aarch64_baseos_latest
	curl-7.76.1-23.el9.aarch64.rpm	a371b258f1a2d7a3a4595f204056760a4ad040150042f9adb410417db8ab9c46	-	ol9_aarch64_u2_baseos_base
	curl-minimal-7.76.1-23.el9.aarch64.rpm	defb4e1f4aad5796c35d0c80323423bc83a6d9d766e773db980db385e61fbbc9	-	ol9_aarch64_baseos_developer
	curl-minimal-7.76.1-23.el9.aarch64.rpm	defb4e1f4aad5796c35d0c80323423bc83a6d9d766e773db980db385e61fbbc9	-	ol9_aarch64_baseos_latest
	curl-minimal-7.76.1-23.el9.aarch64.rpm	defb4e1f4aad5796c35d0c80323423bc83a6d9d766e773db980db385e61fbbc9	-	ol9_aarch64_u2_baseos_base
	libcurl-7.76.1-23.el9.aarch64.rpm	9f7dad0d1ad2de6f8db4c7a6cde157d072bf6b49ec941e9a57f85da10df0c12f	-	ol9_aarch64_baseos_developer
	libcurl-7.76.1-23.el9.aarch64.rpm	9f7dad0d1ad2de6f8db4c7a6cde157d072bf6b49ec941e9a57f85da10df0c12f	-	ol9_aarch64_baseos_latest
	libcurl-7.76.1-23.el9.aarch64.rpm	9f7dad0d1ad2de6f8db4c7a6cde157d072bf6b49ec941e9a57f85da10df0c12f	-	ol9_aarch64_u2_baseos_base
	libcurl-devel-7.76.1-23.el9.aarch64.rpm	84cd3e94572c533b404d9066574841b38ab4188158e91412b50dd29128bf39b5	-	ol9_aarch64_appstream
	libcurl-devel-7.76.1-23.el9.aarch64.rpm	84cd3e94572c533b404d9066574841b38ab4188158e91412b50dd29128bf39b5	-	ol9_aarch64_appstream_developer
	libcurl-minimal-7.76.1-23.el9.aarch64.rpm	15eb81e834d93f6d33d1006e9d53ab8aec98855e81be7dfeeb0b86899ed8cacd	-	ol9_aarch64_baseos_developer
	libcurl-minimal-7.76.1-23.el9.aarch64.rpm	15eb81e834d93f6d33d1006e9d53ab8aec98855e81be7dfeeb0b86899ed8cacd	-	ol9_aarch64_baseos_latest
	libcurl-minimal-7.76.1-23.el9.aarch64.rpm	15eb81e834d93f6d33d1006e9d53ab8aec98855e81be7dfeeb0b86899ed8cacd	-	ol9_aarch64_u2_baseos_base

Oracle Linux 9 (x86_64)	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_x86_64_appstream
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_x86_64_appstream_developer
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_x86_64_baseos_developer
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_x86_64_baseos_latest
	curl-7.76.1-23.el9.src.rpm	257f15bb24cfbc289a0d2a3096bf74aafec5290a34ad96b3668bee03a103341e	-	ol9_x86_64_u2_baseos_base
	curl-7.76.1-23.el9.x86_64.rpm	1c41a035b90169490e37d8eb303bfa029a27732015f859edbaef89d46ab2daaf	-	ol9_x86_64_baseos_developer
	curl-7.76.1-23.el9.x86_64.rpm	1c41a035b90169490e37d8eb303bfa029a27732015f859edbaef89d46ab2daaf	-	ol9_x86_64_baseos_latest
	curl-7.76.1-23.el9.x86_64.rpm	1c41a035b90169490e37d8eb303bfa029a27732015f859edbaef89d46ab2daaf	-	ol9_x86_64_u2_baseos_base
	curl-minimal-7.76.1-23.el9.x86_64.rpm	32bad0da2bc70901b11aa52a791cf7192ffbc4bc6b658993fd2528ee41aa2f57	-	ol9_x86_64_baseos_developer
	curl-minimal-7.76.1-23.el9.x86_64.rpm	32bad0da2bc70901b11aa52a791cf7192ffbc4bc6b658993fd2528ee41aa2f57	-	ol9_x86_64_baseos_latest
	curl-minimal-7.76.1-23.el9.x86_64.rpm	32bad0da2bc70901b11aa52a791cf7192ffbc4bc6b658993fd2528ee41aa2f57	-	ol9_x86_64_u2_baseos_base
	libcurl-7.76.1-23.el9.i686.rpm	45cec84d0619baa6f695d5af797079a36e44d52ae9c3b7f04cfe64c88cc030ba	-	ol9_x86_64_baseos_developer
	libcurl-7.76.1-23.el9.i686.rpm	45cec84d0619baa6f695d5af797079a36e44d52ae9c3b7f04cfe64c88cc030ba	-	ol9_x86_64_baseos_latest
	libcurl-7.76.1-23.el9.i686.rpm	45cec84d0619baa6f695d5af797079a36e44d52ae9c3b7f04cfe64c88cc030ba	-	ol9_x86_64_u2_baseos_base
	libcurl-7.76.1-23.el9.x86_64.rpm	1f8f6195c4bd7412f050c6e7fe33bd585493cf04b87fd04f9f27ae02ec52a767	-	ol9_x86_64_baseos_developer
	libcurl-7.76.1-23.el9.x86_64.rpm	1f8f6195c4bd7412f050c6e7fe33bd585493cf04b87fd04f9f27ae02ec52a767	-	ol9_x86_64_baseos_latest
	libcurl-7.76.1-23.el9.x86_64.rpm	1f8f6195c4bd7412f050c6e7fe33bd585493cf04b87fd04f9f27ae02ec52a767	-	ol9_x86_64_u2_baseos_base
	libcurl-devel-7.76.1-23.el9.i686.rpm	1578605964e1d2899c0d9cf353513356849b4d43d3dcac3ec5c3f370098f3f42	-	ol9_x86_64_appstream
	libcurl-devel-7.76.1-23.el9.i686.rpm	1578605964e1d2899c0d9cf353513356849b4d43d3dcac3ec5c3f370098f3f42	-	ol9_x86_64_appstream_developer
	libcurl-devel-7.76.1-23.el9.x86_64.rpm	a22a9d3d7f3e92567d369f968b57659cb3099e68f6ae71eca30cd382a1cb82cd	-	ol9_x86_64_appstream
	libcurl-devel-7.76.1-23.el9.x86_64.rpm	a22a9d3d7f3e92567d369f968b57659cb3099e68f6ae71eca30cd382a1cb82cd	-	ol9_x86_64_appstream_developer
	libcurl-minimal-7.76.1-23.el9.i686.rpm	8df62f6e80b3118f7f46547d5610fdc012f8ca12b3479325c3f00f160ad47924	-	ol9_x86_64_baseos_developer
	libcurl-minimal-7.76.1-23.el9.i686.rpm	8df62f6e80b3118f7f46547d5610fdc012f8ca12b3479325c3f00f160ad47924	-	ol9_x86_64_baseos_latest
	libcurl-minimal-7.76.1-23.el9.i686.rpm	8df62f6e80b3118f7f46547d5610fdc012f8ca12b3479325c3f00f160ad47924	-	ol9_x86_64_u2_baseos_base
	libcurl-minimal-7.76.1-23.el9.x86_64.rpm	b806bc8028b348b4b5fc99777f5bc8f5d52b16093537c8cdfdde0622af257576	-	ol9_x86_64_baseos_developer
	libcurl-minimal-7.76.1-23.el9.x86_64.rpm	b806bc8028b348b4b5fc99777f5bc8f5d52b16093537c8cdfdde0622af257576	-	ol9_x86_64_baseos_latest
	libcurl-minimal-7.76.1-23.el9.x86_64.rpm	b806bc8028b348b4b5fc99777f5bc8f5d52b16093537c8cdfdde0622af257576	-	ol9_x86_64_u2_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691