CLSA-2023-1697816385

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2023-1697816385.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2023-1697816385
Upstream
Published
2023-10-20T15:39:49Z
Modified
2026-06-01T00:33:17.256482618Z
Summary
curl: Fix of 2 CVEs
Details
  • CVE-2022-27782: check additional TLS or SSH connection parameters that should have prohibited connection reuse
  • CVE-2023-27534: fix SFTP path '~' resolving discrepancy
  • fix read off end of array for SCP home directory case
References

Affected packages

TuxCare:CentOS:7 / curl

Package

Name
curl
Purl
pkg:rpm/tuxcare/curl?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.29.0-59.el7_9.1.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2023-1697816385.json"

TuxCare:CentOS:7 / libcurl

Package

Name
libcurl
Purl
pkg:rpm/tuxcare/libcurl?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.29.0-59.el7_9.1.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2023-1697816385.json"

TuxCare:CentOS:7 / libcurl-devel

Package

Name
libcurl-devel
Purl
pkg:rpm/tuxcare/libcurl-devel?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.29.0-59.el7_9.1.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2023-1697816385.json"