UbuntuUpdates.org

Bugs fixes in "curl"

Origin Bug number Title Date fixed
CVE CVE-2023-27536 RESERVED 2023-03-20
CVE CVE-2023-27535 RESERVED 2023-03-20
CVE CVE-2023-27534 RESERVED 2023-03-20
CVE CVE-2023-27533 RESERVED 2023-03-20
CVE CVE-2023-23916 An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, mea 2023-02-27
CVE CVE-2023-23916 An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, mea 2023-02-27
CVE CVE-2023-23916 An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, mea 2023-02-27
CVE CVE-2023-23915 A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly whe 2023-02-27
CVE CVE-2023-23914 A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality fail when multiple URLs a 2023-02-27
CVE CVE-2023-23916 An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, mea 2023-02-27
CVE CVE-2023-23916 An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, mea 2023-02-27
CVE CVE-2023-23916 An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, mea 2023-02-27
CVE CVE-2023-23915 A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly whe 2023-02-27
CVE CVE-2023-23914 A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality fail when multiple URLs a 2023-02-27
CVE CVE-2022-43552 HTTP Proxy deny use-after-free 2023-01-05
CVE CVE-2022-43552 HTTP Proxy deny use-after-free 2023-01-05
CVE CVE-2022-43552 HTTP Proxy deny use-after-free 2023-01-05
CVE CVE-2022-43551 A vulnerability exists in curl <7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instruct 2023-01-05
CVE CVE-2022-43552 HTTP Proxy deny use-after-free 2023-01-05
CVE CVE-2022-43552 HTTP Proxy deny use-after-free 2023-01-05



About   -   Send Feedback to @ubuntu_updates