FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

cURL -- Multiple vulnerabilities

Affected packages
curl < 7.78.0

Details

VuXML ID aa646c01-ea0d-11eb-9b84-d4c9ef517024
Discovery 2021-07-21
Entry 2021-07-21

The cURL project reports:

CURLOPT_SSLCERT mixup with Secure Transport (CVE-2021-22926)

TELNET stack contents disclosure again (CVE-2021-22925)

Bad connection reuse due to flawed path name checks (CVE-2021-92254)

Metalink download sends credentials (CVE-2021-92253)

Wrong content via metalink not discarded (CVE-2021-92252)

References

CVE Name CVE-2021-22922
CVE Name CVE-2021-22923
CVE Name CVE-2021-22924
CVE Name CVE-2021-22925
CVE Name CVE-2021-22926
URL https://curl.se/docs/vuln-7.77.0.html