diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2022-04-27 21:43:51 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2022-04-28 13:29:49 +0200 |
commit | cf5d75750640be00bf9d826189628a96ed17248c (patch) | |
tree | 96506a3841148bd122e784b6b524df0096236cbf /ChangeLog.rss | |
parent | dfafa379401441229ad529bfa45564a368ef575a (diff) | |
download | current-cf5d75750640be00bf9d826189628a96ed17248c.tar.gz |
Wed Apr 27 21:43:51 UTC 202220220427214351_15.0
patches/packages/curl-7.83.0-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
OAUTH2 bearer bypass in connection re-use.
Credential leak on redirect.
Bad local IPv6 connection reuse.
Auth/cookie leak on redirect.
For more information, see:
https://curl.se/docs/CVE-2022-22576.html
https://curl.se/docs/CVE-2022-27774.html
https://curl.se/docs/CVE-2022-27775.html
https://curl.se/docs/CVE-2022-27776.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776
(* Security fix *)
Diffstat (limited to 'ChangeLog.rss')
-rw-r--r-- | ChangeLog.rss | 30 |
1 files changed, 28 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss index 6e0d9684..831960b2 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,10 +11,36 @@ <description>Tracking Slackware development in git.</description> <language>en-us</language> <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id> - <pubDate>Mon, 25 Apr 2022 20:55:17 GMT</pubDate> - <lastBuildDate>Tue, 26 Apr 2022 11:29:53 GMT</lastBuildDate> + <pubDate>Wed, 27 Apr 2022 21:43:51 GMT</pubDate> + <lastBuildDate>Thu, 28 Apr 2022 11:29:38 GMT</lastBuildDate> <generator>maintain_current_git.sh v 1.17</generator> <item> + <title>Wed, 27 Apr 2022 21:43:51 GMT</title> + <pubDate>Wed, 27 Apr 2022 21:43:51 GMT</pubDate> + <link>https://git.slackware.nl/current/tag/?h=20220427214351</link> + <guid isPermaLink="false">20220427214351</guid> + <description> + <![CDATA[<pre> +patches/packages/curl-7.83.0-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + OAUTH2 bearer bypass in connection re-use. + Credential leak on redirect. + Bad local IPv6 connection reuse. + Auth/cookie leak on redirect. + For more information, see: + https://curl.se/docs/CVE-2022-22576.html + https://curl.se/docs/CVE-2022-27774.html + https://curl.se/docs/CVE-2022-27775.html + https://curl.se/docs/CVE-2022-27776.html + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776 + (* Security fix *) + </pre>]]> + </description> + </item> + <item> <title>Mon, 25 Apr 2022 20:55:17 GMT</title> <pubDate>Mon, 25 Apr 2022 20:55:17 GMT</pubDate> <link>https://git.slackware.nl/current/tag/?h=20220425205517</link> |