USN-5788-1: curl vulnerabilities

Read Time:25 Second

Hiroki Kurosawa discovered that curl incorrectly handled HSTS support
when certain hostnames included IDN characters. A remote attacker could
possibly use this issue to cause curl to use unencrypted connections. This
issue only affected Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2022-43551)

It was discovered that curl incorrectly handled denials when using HTTP
proxies. A remote attacker could use this issue to cause curl to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2022-43552)

Generated by Feedzy

Cyber Security News

High Performance Podcast Duo to Unveil Secrets of Success at Infosecurity Europe 2024

Smashing Security podcast #369: Keeping the lights on after a ransomware attack

US Congress Passes Bill to Ban TikTok

How to Tell If Your Text Message Is Real

US Sanctions Iranian “Fronts” for Cyber-Attacks on American Entities

Leeds Talent Pool Attracts BlueVoyant’s First UK Security Operations Center

City street lights “misbehave” after ransomware attack

Dan Solove on Privacy Regulation

Security Leaders Braced for Daily AI-Driven Attacks by Year-End

ruby-3.2.4-182.fc38

ruby-3.2.4-182.fc39

chromium-124.0.6367.78-1.el9

chromium-124.0.6367.78-1.fc38

chromium-124.0.6367.78-1.fc39

chromium-124.0.6367.78-1.fc40