USN-5499-1: curl vulnerabilities - Cyber Security News

Read Time:20 Second

Florian Kohnhuser discovered that curl incorrectly handled returning a
TLS server’s certificate chain details. A remote attacker could possibly
use this issue to cause curl to stop responding, resulting in a denial of
service. (CVE-2022-27781)

Harry Sintonen discovered that curl incorrectly handled certain FTP-KRB
messages. An attacker could possibly use this to perform a
machine-in-the-middle attack. (CVE-2022-32208)

More Stories

Erlang/OTP RCE (CVE-2025-32433)

What is the Vulnerability? A critical SSH vulnerability has recently been identified in the Erlang/Open Telecom Platform (OTP). The vulnerability,...

digikam-8.6.0-4.fc40

FEDORA-2025-97687e7f68 Packages in this update: digikam-8.6.0-4.fc40 Update description: update internal Libraw to 2025/03/17 snapshot Read More

digikam-8.6.0-4.fc41

FEDORA-2025-5bbbb2df79 Packages in this update: digikam-8.6.0-4.fc41 Update description: update internal Libraw to 2025/03/17 snapshot Read More

digikam-8.6.0-4.fc42

FEDORA-2025-1c1e378468 Packages in this update: digikam-8.6.0-4.fc42 Update description: update internal Libraw to 2025/03/17 snapshot Read More

epiphany-47.5-1.fc41

FEDORA-2025-164c668d6a Packages in this update: epiphany-47.5-1.fc41 Update description: Update to 47.5, notably fixing CVE-2025-3839 Read More

epiphany-48.1-1.fc42

FEDORA-2025-efbe201596 Packages in this update: epiphany-48.1-1.fc42 Update description: Update to 48.1, notably fixing CVE-2025-3839 Read More