Download
| Alert*
|
oval:org.secpod.oval:def:19500669
A flaw was found in Curl, where it inadvertently kept the SSL session ID for connections in its cache even when the verify status, OCSP stapling test, failed. A subsequent transfer to the same hostname could succeed if the session ID cache were still fresh, which then skips the verify status check oval:org.secpod.oval:def:2108558 Oracle Solaris 11 - ( CVE-2023-46218 ) |
