[CLSA-2025:1764029592] curl: Fix of CVE-2025-0167
Type:
security
Severity:
Low
Release date:
2025-11-25 00:13:15 UTC
Description:
- CVE-2025-0167: fix password leakage issue when using .netrc file with no login or password in default entry and following HTTP redirects
Updated packages:
  • curl-7.76.1-23.el9_2.4.tuxcare.els4.x86_64.rpm
    sha:d6754a9f43dc5b3821ca36d9d0ef459aa4cbb2651e78c3241e09362f2ba88869
  • curl-minimal-7.76.1-23.el9_2.4.tuxcare.els4.x86_64.rpm
    sha:113fbe33a4979e698a2978c4ab7767287afa4a21c119abc37811127cd0f8fed6
  • libcurl-7.76.1-23.el9_2.4.tuxcare.els4.i686.rpm
    sha:b0eccc6c055443530cbfcf1a603cb468996b8af944554e839d8e932edced8a6e
  • libcurl-7.76.1-23.el9_2.4.tuxcare.els4.x86_64.rpm
    sha:8059719bab84fc4a987fa31fedded38a59cb1c6b8377e1d4a95b377a652cd25d
  • libcurl-devel-7.76.1-23.el9_2.4.tuxcare.els4.i686.rpm
    sha:1b0ecd346139a9e70fe6759570e3b79dde622db5a91882f413282f6185250456
  • libcurl-devel-7.76.1-23.el9_2.4.tuxcare.els4.x86_64.rpm
    sha:61a87cd7b2b593387079acddf064fb73ea55b49c8210b309b20d845038f4bab5
  • libcurl-minimal-7.76.1-23.el9_2.4.tuxcare.els4.i686.rpm
    sha:b129a230b265b861b8f0449c45e45ae827a260630cc1e15eac9f95278c584cab
  • libcurl-minimal-7.76.1-23.el9_2.4.tuxcare.els4.x86_64.rpm
    sha:3951fd2059bc6642fccdf88ac68f4df6ac84170c941a5ac561b8b0b5b3ac7b7c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.