stable

curl-7.82.0-5.fc36

FEDORA-2022-d15a736748 created by kdudka 10 months ago for Fedora 36
  • fix too eager reuse of TLS and SSH connections (CVE-2022-27782)
  • do not accept cookies for TLD with trailing dot (CVE-2022-27779)
  • hsts: ignore trailing dots when comparing hosts names (CVE-2022-30115)
  • reject percent-encoded path separator in URL host (CVE-2022-27780)

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2022-d15a736748

This update has been submitted for testing by kdudka.

10 months ago

This update's test gating status has been changed to 'waiting'.

10 months ago

This update's test gating status has been changed to 'passed'.

10 months ago

This update has been pushed to testing.

10 months ago
User Icon bojan commented & provided feedback 10 months ago
karma

Works.

User Icon mhayden commented & provided feedback 10 months ago
karma

It's doing the things I expect curl to do. 😉

This update can be pushed to stable now if the maintainer wishes

10 months ago
User Icon geraldosimiao provided feedback 10 months ago
karma

This update has been submitted for stable by bodhi.

10 months ago
User Icon kdudka commented & provided feedback 10 months ago

Thank you for testing the update!

This update has been pushed to stable.

10 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
3
Signed
Content Type
RPM
Test Gating
Builds
1
curl-7.82.0-5.fc36
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
10 months ago
in testing
10 months ago
in stable
10 months ago
BZ#2083980 CVE-2022-27782 curl: TLS and SSH connection too eager reuse [fedora-all]
0
0
curl-7.82.0-5.fc36

Automated Test Results

passed

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.0.1 on bodhi-web-66-dxxtt.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy