Buy commercial curl support from WolfSSL. We help you work
out your issues, debug your libcurl applications, use the API, port to new
platforms, add new features and more. With a team lead by the curl founder
himself.
Re: CVE-2022-43552
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Bob via curl-users <curl-users_at_lists.haxx.se>
Date: Fri, 11 Aug 2023 14:06:27 -0600
Unfortunately, per RH site for the CVE they have it listed as Out of support scope.
On Fri, Aug 11, 2023, at 2:51 AM, Hans Henrik Bergan via curl-users wrote:
> RHEL7 is still receiving security updates, so it wouldn'tk surprise me
> if the RHEL7 curl package is patched.
> Anything relevant from
>> yum changelog 9999 curl | grep 43552
> ?
>
> On Thu, 10 Aug 2023 at 22:51, Daniel Stenberg via curl-users
> <curl-users_at_lists.haxx.se> wrote:
>>
>> On Thu, 10 Aug 2023, Bob via curl-users wrote:
>>
>> > We are looking for a way to mitigate this until we can upgrade to RHEL 8 and
>> > wanted to know how to "disable HTTP proxy use" on the system as the
>> > recommendations state.
>>
>> That recommendation is for applications using libcurl. There is no way to
>> force this onto applications from the outside.
>>
>> --
>>
>> / daniel.haxx.se
>> | Commercial curl support up to 24x7 is available!
>> | Private help, bug fixes, support, ports, new features
>> | https://curl.se/support.html
>> --
>> Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-users
>> Etiquette: https://curl.se/mail/etiquette.html
> --
> Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-users
> Etiquette: https://curl.se/mail/etiquette.html
Date: Fri, 11 Aug 2023 14:06:27 -0600
Unfortunately, per RH site for the CVE they have it listed as Out of support scope.
On Fri, Aug 11, 2023, at 2:51 AM, Hans Henrik Bergan via curl-users wrote:
> RHEL7 is still receiving security updates, so it wouldn'tk surprise me
> if the RHEL7 curl package is patched.
> Anything relevant from
>> yum changelog 9999 curl | grep 43552
> ?
>
> On Thu, 10 Aug 2023 at 22:51, Daniel Stenberg via curl-users
> <curl-users_at_lists.haxx.se> wrote:
>>
>> On Thu, 10 Aug 2023, Bob via curl-users wrote:
>>
>> > We are looking for a way to mitigate this until we can upgrade to RHEL 8 and
>> > wanted to know how to "disable HTTP proxy use" on the system as the
>> > recommendations state.
>>
>> That recommendation is for applications using libcurl. There is no way to
>> force this onto applications from the outside.
>>
>> --
>>
>> / daniel.haxx.se
>> | Commercial curl support up to 24x7 is available!
>> | Private help, bug fixes, support, ports, new features
>> | https://curl.se/support.html
>> --
>> Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-users
>> Etiquette: https://curl.se/mail/etiquette.html
> --
> Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-users
> Etiquette: https://curl.se/mail/etiquette.html
-- Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-users Etiquette: https://curl.se/mail/etiquette.htmlReceived on 2023-08-11