ELSA-2023-4523

ULN >
Oracle Linux Errata repository >
ELSA-2023-4523

ELSA-2023-4523 - curl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-08-10

Description

[7.61.1-30.el8_8.3]
- GSS delegation too eager connection re-use (CVE-2023-27536)
- fix host name wildcard checking (CVE-2023-28321)
- rebuild certs with 2048-bit RSA keys

Related CVEs

CVE-2023-27536

CVE-2023-28321

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	curl-7.61.1-30.el8_8.3.src.rpm	d3431f5bfee03e722b0cb0f810f9fd7f0c1c0601e03e199944819c93442f3edb	-	ol8_aarch64_baseos_latest
	curl-7.61.1-30.el8_8.3.src.rpm	d3431f5bfee03e722b0cb0f810f9fd7f0c1c0601e03e199944819c93442f3edb	-	ol8_aarch64_u8_baseos_patch
	curl-7.61.1-30.el8_8.3.aarch64.rpm	ca724ba71f29af75a84c22377332808a28a0fc7ea323f5ce9403d1ab9965439d	-	ol8_aarch64_baseos_latest
	curl-7.61.1-30.el8_8.3.aarch64.rpm	ca724ba71f29af75a84c22377332808a28a0fc7ea323f5ce9403d1ab9965439d	-	ol8_aarch64_u8_baseos_patch
	libcurl-7.61.1-30.el8_8.3.aarch64.rpm	5990eaf0cc8b24b8cedfde11760b47d3791d0224bfe3d3c9f7d05714f5d46696	-	ol8_aarch64_baseos_latest
	libcurl-7.61.1-30.el8_8.3.aarch64.rpm	5990eaf0cc8b24b8cedfde11760b47d3791d0224bfe3d3c9f7d05714f5d46696	-	ol8_aarch64_u8_baseos_patch
	libcurl-devel-7.61.1-30.el8_8.3.aarch64.rpm	262cbf3eb722f4a9c31e8c51d71db9ad0f355641ea4085761733feed86df6a4f	-	ol8_aarch64_baseos_latest
	libcurl-devel-7.61.1-30.el8_8.3.aarch64.rpm	262cbf3eb722f4a9c31e8c51d71db9ad0f355641ea4085761733feed86df6a4f	-	ol8_aarch64_u8_baseos_patch
	libcurl-minimal-7.61.1-30.el8_8.3.aarch64.rpm	03ea1962254164ec950c598b3dabe0e975f504cbd61354bd39cf1edc8c6895c8	-	ol8_aarch64_baseos_latest
	libcurl-minimal-7.61.1-30.el8_8.3.aarch64.rpm	03ea1962254164ec950c598b3dabe0e975f504cbd61354bd39cf1edc8c6895c8	-	ol8_aarch64_u8_baseos_patch

Oracle Linux 8 (x86_64)	curl-7.61.1-30.el8_8.3.src.rpm	d3431f5bfee03e722b0cb0f810f9fd7f0c1c0601e03e199944819c93442f3edb	-	ol8_x86_64_baseos_latest
	curl-7.61.1-30.el8_8.3.src.rpm	d3431f5bfee03e722b0cb0f810f9fd7f0c1c0601e03e199944819c93442f3edb	-	ol8_x86_64_u8_baseos_patch
	curl-7.61.1-30.el8_8.3.x86_64.rpm	ed85f1efae4b5f23da8a6e4795d0764c1f2c4f3ab77b03abe20a4b7726d19f94	-	exadata_dbserver_23.1.6.0.0_x86_64_base
	curl-7.61.1-30.el8_8.3.x86_64.rpm	ed85f1efae4b5f23da8a6e4795d0764c1f2c4f3ab77b03abe20a4b7726d19f94	-	exadata_dbserver_23.1.7.0.0_x86_64_base
	curl-7.61.1-30.el8_8.3.x86_64.rpm	ed85f1efae4b5f23da8a6e4795d0764c1f2c4f3ab77b03abe20a4b7726d19f94	-	exadata_dbserver_23.1.8.0.0_x86_64_base
	curl-7.61.1-30.el8_8.3.x86_64.rpm	ed85f1efae4b5f23da8a6e4795d0764c1f2c4f3ab77b03abe20a4b7726d19f94	-	exadata_dbserver_23.1.9.0.0_x86_64_base
	curl-7.61.1-30.el8_8.3.x86_64.rpm	ed85f1efae4b5f23da8a6e4795d0764c1f2c4f3ab77b03abe20a4b7726d19f94	-	ol8_x86_64_baseos_latest
	curl-7.61.1-30.el8_8.3.x86_64.rpm	ed85f1efae4b5f23da8a6e4795d0764c1f2c4f3ab77b03abe20a4b7726d19f94	-	ol8_x86_64_u8_baseos_patch
	libcurl-7.61.1-30.el8_8.3.i686.rpm	000e3a9d07430e68ef8ad979cf8708e1b244705e81f1f1cfed93c21f7bdc5e91	-	ol8_x86_64_baseos_latest
	libcurl-7.61.1-30.el8_8.3.i686.rpm	000e3a9d07430e68ef8ad979cf8708e1b244705e81f1f1cfed93c21f7bdc5e91	-	ol8_x86_64_u8_baseos_patch
	libcurl-7.61.1-30.el8_8.3.x86_64.rpm	71e8703b81e7a9cc48de049a2892ac0bb0a2b07cd33f079b2d78930194bf63cf	-	exadata_dbserver_23.1.6.0.0_x86_64_base
	libcurl-7.61.1-30.el8_8.3.x86_64.rpm	71e8703b81e7a9cc48de049a2892ac0bb0a2b07cd33f079b2d78930194bf63cf	-	exadata_dbserver_23.1.7.0.0_x86_64_base
	libcurl-7.61.1-30.el8_8.3.x86_64.rpm	71e8703b81e7a9cc48de049a2892ac0bb0a2b07cd33f079b2d78930194bf63cf	-	exadata_dbserver_23.1.8.0.0_x86_64_base
	libcurl-7.61.1-30.el8_8.3.x86_64.rpm	71e8703b81e7a9cc48de049a2892ac0bb0a2b07cd33f079b2d78930194bf63cf	-	exadata_dbserver_23.1.9.0.0_x86_64_base
	libcurl-7.61.1-30.el8_8.3.x86_64.rpm	71e8703b81e7a9cc48de049a2892ac0bb0a2b07cd33f079b2d78930194bf63cf	-	ol8_x86_64_baseos_latest
	libcurl-7.61.1-30.el8_8.3.x86_64.rpm	71e8703b81e7a9cc48de049a2892ac0bb0a2b07cd33f079b2d78930194bf63cf	-	ol8_x86_64_u8_baseos_patch
	libcurl-devel-7.61.1-30.el8_8.3.i686.rpm	545a34edb6c4c800f2662d44960f4310ae52d92ceb320bd1515e5cfd03ceae1f	-	ol8_x86_64_baseos_latest
	libcurl-devel-7.61.1-30.el8_8.3.i686.rpm	545a34edb6c4c800f2662d44960f4310ae52d92ceb320bd1515e5cfd03ceae1f	-	ol8_x86_64_u8_baseos_patch
	libcurl-devel-7.61.1-30.el8_8.3.x86_64.rpm	a45af89ad8e7df7269e44b3647525cc05f1e638a092676b48354f65554a05096	-	ol8_x86_64_baseos_latest
	libcurl-devel-7.61.1-30.el8_8.3.x86_64.rpm	a45af89ad8e7df7269e44b3647525cc05f1e638a092676b48354f65554a05096	-	ol8_x86_64_u8_baseos_patch
	libcurl-minimal-7.61.1-30.el8_8.3.i686.rpm	17e5b40d98ac49de6cf14fa36818bf21464b8e354ecf7520440bd31c81a953b2	-	ol8_x86_64_baseos_latest
	libcurl-minimal-7.61.1-30.el8_8.3.i686.rpm	17e5b40d98ac49de6cf14fa36818bf21464b8e354ecf7520440bd31c81a953b2	-	ol8_x86_64_u8_baseos_patch
	libcurl-minimal-7.61.1-30.el8_8.3.x86_64.rpm	bd4cf0a46cd04b037a2b8c06fa78830e0ac801397525ccd7fc424d1027262906	-	ol8_x86_64_baseos_latest
	libcurl-minimal-7.61.1-30.el8_8.3.x86_64.rpm	bd4cf0a46cd04b037a2b8c06fa78830e0ac801397525ccd7fc424d1027262906	-	ol8_x86_64_u8_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691