VDB
ALSA-2022%3A8299
ALSA-2022%3A8299
PUBLISHED
The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fix(es): * curl: bad local IPv6 connection reuse (CVE-2022-27775) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AlmaLinux:9 | libcurl | 0, 0 |
| AlmaLinux:9 | libcurl-devel | 0, 0 |
| AlmaLinux:9 | curl-minimal | 0, 0 |
| AlmaLinux:9 | curl | 0, 0 |
| AlmaLinux:9 | libcurl-minimal | 0, 0 |
Timeline
- Nov 15, 2022 CVE Published
- Nov 18, 2022 CVE Updated
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2022:8299 vendor-advisory
- https://access.redhat.com/security/cve/CVE-2022-27775 third-party-advisory
- https://bugzilla.redhat.com/2078388 third-party-advisory
- https://errata.almalinux.org/9/ALSA-2022-8299.html vendor-advisory