New curl and ImageMagick packages within CloudLinux OS 6 ELS have been rolled out to 100%

Written by Inessa Atmachian | Apr 13, 2021 5:55:38 PM

New curl package with the fix for the CVE-2021-22876 and ImageMagick package with the fix for the CVE-2020-29599 within CloudLinux OS 6 extended lifecycle support have been rolled out to 100% and are now available for download from our production repository.

Changelog

curl-7.19.7-56.cloudlinux.els6

back-port urlapi from v7.75.0 (used by CVE-2021-22876)
strip credentials from the auto-referer header (CVE-2021-22876)

ImageMagick-6.7.2.7-7

Add fix for CVE-2020-29599

Update commands

yum update curl*

yum update ImageMagick*

View full post