Oracle Errata System
Oracle Linux
5.11
2022-06-30T21:39:05
ELSA-2022-5245: curl security update (MODERATE)
Oracle Linux 9
[7.76.1-14.el9_0.4]
- fix too eager reuse of TLS and SSH connections (CVE-2022-27782)
[7.76.1-14.el9_0.3]
- fix leak of SRP credentials in redirects (CVE-2022-27774)
[7.76.1-14.el9_0.2]
- add missing tests to Makefile
[7.76.1-14.el9_0.1]
- fix credential leak on redirect (CVE-2022-27774)
- fix auth/cookie leak on redirect (CVE-2022-27776)
- fix OAUTH2 bearer bypass in connection re-use (CVE-2022-22576)
MODERATE
Copyright 2022 Oracle, Inc.
CVE-2022-22576
CVE-2022-27774
CVE-2022-27776
CVE-2022-27782
libcurl-devel
libcurl
oraclelinux-release
curl-minimal
libcurl-minimal
curl
bc4d06a08d8b756f
^9
aarch64
0:7.76.1-14.el9_0.4
x86_64