all InfoSec news
USN-6237-1: curl vulnerabilities
July 19, 2023, 12:11 p.m. |
Ubuntu security notices ubuntu.com
certificate wildcards. A remote attacker could possibly use this issue to
spoof certain website certificates using IDN hosts. (CVE-2023-28321)
Hiroki Kurosawa discovered that curl incorrectly handled callbacks when
certain options are set by applications. This could cause applications
using curl to misbehave, resulting in information disclosure, or a denial
of service. (CVE-2023-28322)
It was discovered that curl incorrectly handled saving cookies to files. A
local attacker could possibly use this issue …
applications certificate certificates curl cve disclosure idn information information disclosure issue options spoof usn vulnerabilities website wildcards
More from ubuntu.com / Ubuntu security notices
USN-6757-2: PHP vulnerabilities
4 days, 21 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
5 days, 10 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
6 days, 15 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Information System Security Officer (ISSO)
@ LinQuest | Boulder, Colorado, United States
Project Manager - Security Engineering
@ MongoDB | New York City
Security Continuous Improvement Program Manager (m/f/d)
@ METRO/MAKRO | Düsseldorf, Germany
Senior JavaScript Security Engineer, Tools
@ MongoDB | New York City
Principal Platform Security Architect
@ Microsoft | Redmond, Washington, United States
Staff Cyber Security Engineer (Emerging Platforms)
@ NBCUniversal | Englewood Cliffs, NEW JERSEY, United States