OESA-2025-1023
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1023
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2025-1023.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2025-1023
- Upstream
- Published
- 2025-01-10T13:00:27Z
- Modified
- 2025-08-12T05:40:57.920028Z
- Summary
- curl security update
- Details
-
cURL is a computer software project providing a library (libcurl) and command-line tool (curl) for transferring data using various protocols.
Security Fix(es):
A vulnerability has been found in cURL (Network Utility Software) and classified as problematic. Affected by this vulnerability is an unknown code block of the component netrc File Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.(CVE-2024-11053)
- Database specific
{ "severity": "Low" }- References
Affected packages
openEuler:24.03-LTS-SP1 / curl
Package
- Name
- curl
- Purl
- pkg:rpm/openEuler/curl&distro=openEuler-24.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed8.4.0-14.oe2403sp1
Ecosystem specific
{
"src": [
"curl-8.4.0-14.oe2403sp1.src.rpm"
],
"x86_64": [
"curl-8.4.0-14.oe2403sp1.x86_64.rpm",
"curl-debuginfo-8.4.0-14.oe2403sp1.x86_64.rpm",
"curl-debugsource-8.4.0-14.oe2403sp1.x86_64.rpm",
"libcurl-8.4.0-14.oe2403sp1.x86_64.rpm",
"libcurl-devel-8.4.0-14.oe2403sp1.x86_64.rpm"
],
"aarch64": [
"curl-8.4.0-14.oe2403sp1.aarch64.rpm",
"curl-debuginfo-8.4.0-14.oe2403sp1.aarch64.rpm",
"curl-debugsource-8.4.0-14.oe2403sp1.aarch64.rpm",
"libcurl-8.4.0-14.oe2403sp1.aarch64.rpm",
"libcurl-devel-8.4.0-14.oe2403sp1.aarch64.rpm"
],
"noarch": [
"curl-help-8.4.0-14.oe2403sp1.noarch.rpm"
]
}