{"id":"CLSA-2022-1663184017","summary":"Fixed CVEs in curl: CVE-2022-32208, CVE-2022-32206","details":"- CVE-2022-32208: krb5: fix returning error on decode errors\n- CVE-2022-32206: content_encoding: return error on too many compression steps\n- fix a curl.spec's comment about applying TuxCare ELS patches\n- improve the test system by repeating failed tests several times","modified":"2026-06-01T00:32:38.943923590Z","published":"2022-09-14T19:33:37Z","upstream":["CVE-2022-32208","CVE-2022-32206"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.5-els/CLSA-2022-1663184017.html"}],"affected":[{"package":{"name":"curl","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/curl?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2022-1663184017.json"}},{"package":{"name":"curl-minimal","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/curl-minimal?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2022-1663184017.json"}},{"package":{"name":"libcurl","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/libcurl?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2022-1663184017.json"}},{"package":{"name":"libcurl-devel","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/libcurl-devel?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2022-1663184017.json"}},{"package":{"name":"libcurl-minimal","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/libcurl-minimal?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2022-1663184017.json"}}],"schema_version":"1.7.5"}