A new curl package with the fix for the CVE-2021-22876 within CentOS 6 ELS has been rolled out to 100%

Extended-CentOS

A new curl package with the fix for the CVE-2021-22876 within CentOS 6 extended lifecycle support has been rolled out to 100% and is now available for download from our production repository.

Erratahttps://errata.cloudlinux.com/els6/CLSA-2021-1617285762.html


Changelog

curl-7.19.7-56.cloudlinux.els6

  • back-port urlapi from v7.75.0 (used by CVE-2021-22876)
  • strip credentials from the auto-referer header (CVE-2021-22876)

Update command

yum update curl*

A new curl package with the fix for the CVE-2021-22876 within CentOS 6 ELS has been rolled out to 100%

Extended-CentOS

A new curl package with the fix for the CVE-2021-22876 within CentOS 6 extended lifecycle support has been rolled out to 100% and is now available for download from our production repository.

Erratahttps://errata.cloudlinux.com/els6/CLSA-2021-1617285762.html


Changelog

curl-7.19.7-56.cloudlinux.els6

  • back-port urlapi from v7.75.0 (used by CVE-2021-22876)
  • strip credentials from the auto-referer header (CVE-2021-22876)

Update command

yum update curl*
imunify-logo

WEB SERVER SECURITY BLOG

Subscribe to CloudLinux Newsletter