New curl package with the fix for the CVE-2021-22876 and ImageMagick package with the fix for the CVE-2020-29599 within CloudLinux OS 6 extended lifecycle support have been rolled out to 100% and are now available for download from our production repository.
- back-port urlapi from v7.75.0 (used by CVE-2021-22876)
- strip credentials from the auto-referer header (CVE-2021-22876)
- Add fix for CVE-2020-29599
yum update curl*
yum update ImageMagick*