CLSA-2023-1681491348

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2023-1681491348

Upstream

CVE-2023-27533

CVE-2023-27535

CVE-2023-27536

Published

2023-04-14T16:55:52Z

Modified

2026-06-04T10:03:49.829631557Z

Summary

Fix CVE(s): CVE-2023-27536, CVE-2023-27535, CVE-2023-27533

Details

SECURITY UPDATE: Telnet option IAC injection
- debian/patches/CVE-2023-27533.patch: only accept option arguments in ascii to avoid embedded telnet negotiation commands
- CVE-2023-27533
SECURITY UPDATE: FTP too eager connection reuse
- debian/patches/CVE-2023-27535.patch: add more conditions for connection reuse
- CVE-2023-27535
SECURITY UPDATE: GSS delegation too eager connection re-use
- debian/patches/CVE-2023-27536.patch: only reuse connections with same GSS delegation
- CVE-2023-27536

References

https://errata.cloudlinux.com/ubuntu16_04-els/CLSA-2023-1681491348

Affected packages

TuxCare:Ubuntu:16.04

curl

Package

Name: curl
Purl: pkg:deb/tuxcare/curl?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"

libcurl3

Package

Name: libcurl3
Purl: pkg:deb/tuxcare/libcurl3?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"

libcurl3-gnutls

Package

Name: libcurl3-gnutls
Purl: pkg:deb/tuxcare/libcurl3-gnutls?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"

libcurl3-nss

Package

Name: libcurl3-nss
Purl: pkg:deb/tuxcare/libcurl3-nss?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"

libcurl4-doc

Package

Name: libcurl4-doc
Purl: pkg:deb/tuxcare/libcurl4-doc?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"

libcurl4-gnutls-dev

Package

Name: libcurl4-gnutls-dev
Purl: pkg:deb/tuxcare/libcurl4-gnutls-dev?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"

libcurl4-nss-dev

Package

Name: libcurl4-nss-dev
Purl: pkg:deb/tuxcare/libcurl4-nss-dev?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"

libcurl4-openssl-dev

Package

Name: libcurl4-openssl-dev
Purl: pkg:deb/tuxcare/libcurl4-openssl-dev?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.47.0-1ubuntu2.23+tuxcare.els8

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1681491348.json"