USN-6237-1 fixed several vulnerabilities in curl. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 18.04 LTS.
Original advisory details:
Hiroki Kurosawa discovered that curl incorrectly handled validating certain certificate wildcards. A remote attacker could possibly use this issue to spoof certain website certificates using IDN hosts. (CVE-2023-28321)
Hiroki Kurosawa discovered that curl incorrectly handled callbacks when certain options are set by applications. This could cause applications using curl to misbehave, resulting in information disclosure, or a denial of service. (CVE-2023-28322)
It was discovered that curl incorrectly handled saving cookies to files. A local attacker could possibly use this issue to create or overwrite files. This issue only affected Ubuntu 22.10, and Ubuntu 23.04. (CVE-2023-32001)
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "curl-udeb": "7.35.0-1ubuntu2.20+esm16", "libcurl3": "7.35.0-1ubuntu2.20+esm16", "libcurl4-gnutls-dev": "7.35.0-1ubuntu2.20+esm16", "libcurl3-dbgsym": "7.35.0-1ubuntu2.20+esm16", "libcurl3-nss": "7.35.0-1ubuntu2.20+esm16", "libcurl4-doc": "7.35.0-1ubuntu2.20+esm16", "libcurl3-udeb-dbgsym": "7.35.0-1ubuntu2.20+esm16", "libcurl3-gnutls-dbgsym": "7.35.0-1ubuntu2.20+esm16", "libcurl4-openssl-dev": "7.35.0-1ubuntu2.20+esm16", "libcurl4-openssl-dev-dbgsym": "7.35.0-1ubuntu2.20+esm16", "curl-dbgsym": "7.35.0-1ubuntu2.20+esm16", "curl": "7.35.0-1ubuntu2.20+esm16", "libcurl3-udeb": "7.35.0-1ubuntu2.20+esm16", "curl-udeb-dbgsym": "7.35.0-1ubuntu2.20+esm16", "libcurl4-nss-dev-dbgsym": "7.35.0-1ubuntu2.20+esm16", "libcurl3-gnutls": "7.35.0-1ubuntu2.20+esm16", "libcurl4-gnutls-dev-dbgsym": "7.35.0-1ubuntu2.20+esm16", "libcurl3-nss-dbgsym": "7.35.0-1ubuntu2.20+esm16", "libcurl3-dbg": "7.35.0-1ubuntu2.20+esm16", "libcurl4-nss-dev": "7.35.0-1ubuntu2.20+esm16" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "libcurl3": "7.47.0-1ubuntu2.19+esm9", "libcurl4-gnutls-dev": "7.47.0-1ubuntu2.19+esm9", "libcurl3-dbgsym": "7.47.0-1ubuntu2.19+esm9", "libcurl3-nss": "7.47.0-1ubuntu2.19+esm9", "libcurl4-doc": "7.47.0-1ubuntu2.19+esm9", "libcurl3-gnutls-dbgsym": "7.47.0-1ubuntu2.19+esm9", "libcurl4-openssl-dev": "7.47.0-1ubuntu2.19+esm9", "libcurl4-openssl-dev-dbgsym": "7.47.0-1ubuntu2.19+esm9", "curl-dbgsym": "7.47.0-1ubuntu2.19+esm9", "curl": "7.47.0-1ubuntu2.19+esm9", "libcurl4-nss-dev-dbgsym": "7.47.0-1ubuntu2.19+esm9", "libcurl3-gnutls": "7.47.0-1ubuntu2.19+esm9", "libcurl4-gnutls-dev-dbgsym": "7.47.0-1ubuntu2.19+esm9", "libcurl3-nss-dbgsym": "7.47.0-1ubuntu2.19+esm9", "libcurl3-dbg": "7.47.0-1ubuntu2.19+esm9", "libcurl4-nss-dev": "7.47.0-1ubuntu2.19+esm9" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "curl-dbgsym": "7.58.0-2ubuntu3.24+esm1", "curl": "7.58.0-2ubuntu3.24+esm1", "libcurl4": "7.58.0-2ubuntu3.24+esm1", "libcurl4-gnutls-dev": "7.58.0-2ubuntu3.24+esm1", "libcurl4-dbgsym": "7.58.0-2ubuntu3.24+esm1", "libcurl3-nss": "7.58.0-2ubuntu3.24+esm1", "libcurl4-doc": "7.58.0-2ubuntu3.24+esm1", "libcurl3-nss-dbgsym": "7.58.0-2ubuntu3.24+esm1", "libcurl3-gnutls": "7.58.0-2ubuntu3.24+esm1", "libcurl3-gnutls-dbgsym": "7.58.0-2ubuntu3.24+esm1", "libcurl4-openssl-dev": "7.58.0-2ubuntu3.24+esm1", "libcurl4-nss-dev": "7.58.0-2ubuntu3.24+esm1" } ] }