RHSA-2017:0847-01 -- Redhat curlID: oval:org.secpod.oval:def:502010 | Date: (C)2017-03-31 (M)2023-02-20 |
Class: PATCH | Family: unix |
The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fix: * It was found that the fix for CVE-2015-3148 in curl was incomplete. An application using libcurl with HTTP Negotiate authentication could incorrectly re-use credentials for subsequent requests to the same server. This issue was discovered by Paulo Andrade .
Platform: |
Red Hat Enterprise Linux 6 |