VDB

MAGEIA-2025-123

MAGEIA-2025-123 PUBLISHED

When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. The fix was included previously as part of MGAA-2025-0004.

Affected Products

VendorProductVersions
Mageiacurl0, 7.88.1-4.6.mga9

Timeline

  • Apr 3, 2025 CVE Published
  • Apr 3, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›