VDB
MAGEIA-2025-123
MAGEIA-2025-123
PUBLISHED
When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. The fix was included previously as part of MGAA-2025-0004.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mageia | curl | 0, 7.88.1-4.6.mga9 |
Timeline
- Apr 3, 2025 CVE Published
- Apr 3, 2025 CVE Updated