ELSA-2023-6745

ULN >
Oracle Linux Errata repository >
ELSA-2023-6745

ELSA-2023-6745 - curl security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2023-11-16

Description

[7.76.1-26.el9_3.2]
- fix cookie injection with none file (CVE-2023-38546)

[7.76.1-26.el9_3.1]
- socks: return error if hostname too long for remote resolve (CVE-2023-38545)

Related CVEs

CVE-2023-38546

CVE-2023-38545

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	curl-7.76.1-26.el9_3.2.src.rpm	dce9af76eca15919b55c431e6017ecbf2afa95a3afcaae2635e12f4a9e5453b7	-	ol9_aarch64_appstream
	curl-7.76.1-26.el9_3.2.src.rpm	dce9af76eca15919b55c431e6017ecbf2afa95a3afcaae2635e12f4a9e5453b7	-	ol9_aarch64_baseos_latest
	curl-7.76.1-26.el9_3.2.aarch64.rpm	f477f82d280a4a3418afcc3d17392adb43cc69831c262ac36363df98dcbbe653	-	ol9_aarch64_baseos_latest
	curl-minimal-7.76.1-26.el9_3.2.aarch64.rpm	ecf7d4ac22cb5e8299ad2631fcd0be29c24a3840375126b5a356f9d7b4d94caf	-	ol9_aarch64_baseos_latest
	libcurl-7.76.1-26.el9_3.2.aarch64.rpm	94571303aae04e5cdc9c7b096b0f907353d5b4b6984b60d39fb488158628c837	-	ol9_aarch64_baseos_latest
	libcurl-devel-7.76.1-26.el9_3.2.aarch64.rpm	aba4fc57e2c25ba60de743db1dca7a0f297220a4473a82f32f98afe5285b337f	-	ol9_aarch64_appstream
	libcurl-minimal-7.76.1-26.el9_3.2.aarch64.rpm	f0a721537134a54a9b29ec9e9d6deff4d1fc2fc775511b1341a92f4fe55aa3c0	-	ol9_aarch64_baseos_latest

Oracle Linux 9 (x86_64)	curl-7.76.1-26.el9_3.2.src.rpm	dce9af76eca15919b55c431e6017ecbf2afa95a3afcaae2635e12f4a9e5453b7	-	ol9_x86_64_appstream
	curl-7.76.1-26.el9_3.2.src.rpm	dce9af76eca15919b55c431e6017ecbf2afa95a3afcaae2635e12f4a9e5453b7	-	ol9_x86_64_baseos_latest
	curl-7.76.1-26.el9_3.2.x86_64.rpm	d738c1f163f5d41efa462543018855be72d8f047ce539e5046184ef390cf7756	-	ol9_x86_64_baseos_latest
	curl-minimal-7.76.1-26.el9_3.2.x86_64.rpm	0e8ef65d8f2bc8e36b020c1c41d4669098324df4a646bc89256122ef25a432d8	-	ol9_x86_64_baseos_latest
	libcurl-7.76.1-26.el9_3.2.i686.rpm	b71c742dd49df8d6bf4a51c1fa724e3832e87c1e3c1107d8b8babf1190797c1b	-	ol9_x86_64_baseos_latest
	libcurl-7.76.1-26.el9_3.2.x86_64.rpm	7fd6bd076f7cb331c8f2b693e8815c61c547dbaf80e2286ccda425a4409aaa0f	-	ol9_x86_64_baseos_latest
	libcurl-devel-7.76.1-26.el9_3.2.i686.rpm	2760608314a9bf750caf3514bf6ddf5dec5e4550ccde539ec280795811d0a008	-	ol9_x86_64_appstream
	libcurl-devel-7.76.1-26.el9_3.2.x86_64.rpm	5c3429a0aa4def4c9ade1aa740a85ceb7196974211968428ac3c0f6f3bdcc5cd	-	ol9_x86_64_appstream
	libcurl-minimal-7.76.1-26.el9_3.2.i686.rpm	e03014464382632167425d372730b0d524cd2325bcc0ea60f07603ba17bdb71a	-	ol9_x86_64_baseos_latest
	libcurl-minimal-7.76.1-26.el9_3.2.x86_64.rpm	c9cb824cb4a317339f0d381af947fe43937822b6842d92830ac5307a82ac29e9	-	ol9_x86_64_baseos_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691