[CLSA-2024:1726773445] Fix CVE(s): CVE-2024-7264
Type:
security
Severity:
Moderate
Release date:
2024-09-19 19:17:28 UTC
Description:
* SECURITY UPDATE: Heap Buffer Overflow in ASN.1 Parser - debian/patches/CVE-2024-7264.patch: Clean up GTime2str function to handle optional fractional seconds properly. Fix GTime2str() issues and add unit tests to verify correct behaviour - CVE-2024-7264
Updated packages:
  • curl_7.58.0-2ubuntu3.24+tuxcare.els6_amd64.deb
    sha:87ca5cd31254e3e35e5ae8edddda891129cc35e8
  • libcurl3-gnutls_7.58.0-2ubuntu3.24+tuxcare.els6_amd64.deb
    sha:3c21ca65b6b32a0a1f26c44e522c4858977f0ece
  • libcurl3-nss_7.58.0-2ubuntu3.24+tuxcare.els6_amd64.deb
    sha:1cb2a3af2459da9a7044726d22e7e016387f75c1
  • libcurl4_7.58.0-2ubuntu3.24+tuxcare.els6_amd64.deb
    sha:55556225657946a9945745e2edffbdd821be74b7
  • libcurl4-doc_7.58.0-2ubuntu3.24+tuxcare.els6_all.deb
    sha:59f0aac505a5cc3b461acf59efdc06a69249ccbb
  • libcurl4-gnutls-dev_7.58.0-2ubuntu3.24+tuxcare.els6_amd64.deb
    sha:90531c738cab8ffefbed3d995a215151512667f0
  • libcurl4-nss-dev_7.58.0-2ubuntu3.24+tuxcare.els6_amd64.deb
    sha:488cdf2f59590899df1747747611cccece681747
  • libcurl4-openssl-dev_7.58.0-2ubuntu3.24+tuxcare.els6_amd64.deb
    sha:2f0e6578c1c55fb0697cf3e4406c1730d9934145
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.