{"id":"CLSA-2022-1663183179","summary":"Fixed CVEs in curl: CVE-2022-32208, CVE-2022-32206","details":"- CVE-2022-32208: krb5: fix returning error on decode errors\n- CVE-2022-32206: content_encoding: return error on too many compression steps\n- fix a curl.spec's comment about applying TuxCare ELS patches\n- improve the test system by repeating failed tests several times","modified":"2026-05-27T11:36:03.381030616Z","published":"2022-09-14T19:19:39Z","upstream":["CVE-2022-32206","CVE-2022-32208"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.4-els/CLSA-2022-1663183179.html"}],"affected":[{"package":{"name":"curl","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/curl?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1663183179.json"}},{"package":{"name":"curl-minimal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/curl-minimal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1663183179.json"}},{"package":{"name":"libcurl","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/libcurl?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1663183179.json"}},{"package":{"name":"libcurl-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/libcurl-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1663183179.json"}},{"package":{"name":"libcurl-minimal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/libcurl-minimal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.61.1-22.el8.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1663183179.json"}}],"schema_version":"1.7.5"}