ELSA-2022-8299 -- Oracle curl_libcurl| ID: oval:org.secpod.oval:def:1506262 | Date: (C)2023-01-05 (M)2024-04-03 |
| Class: PATCH | Family: unix |
[7.76.1-19] - fix unpreserved file permissions - fix HTTP compression denial of service - fix FTP-KRB bad message verification [7.76.1-18] - fix too eager reuse of TLS and SSH connections [7.76.1-17] - fix leak of SRP credentials in redirects [7.76.1-16] - add missing tests to Makefile [7.76.1-15] - fix credential leak on redirect - fix auth/cookie leak on redirect - fix bad local IPv6 connection reuse - fix OAUTH2 bearer bypass in connection re-use
