Updated curl packages fix security vulnerability
Publication date: 05 Jul 2022Modification date: 05 Jul 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-32205 , CVE-2022-32206 , CVE-2022-32207 , CVE-2022-32208
Description
Set-Cookie denial of service. (CVE-2022-32205)
HTTP compression denial of service. (CVE-2022-32206)
Unpreserved file permissions. (CVE-2022-32207)
FTP-KRB bad message verification. (CVE-2022-32208)
References
- https://bugs.mageia.org/show_bug.cgi?id=30582
- https://curl.se/docs/CVE-2022-32205.html
- https://curl.se/docs/CVE-2022-32206.html
- https://curl.se/docs/CVE-2022-32207.html
- https://curl.se/docs/CVE-2022-32208.html
- https://ubuntu.com/security/notices/USN-5495-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
SRPMS
8/core
- curl-7.74.0-1.7.mga8