Buy commercial curl support from WolfSSL. We help you work
out your issues, debug your libcurl applications, use the API, port to new
platforms, add new features and more. With a team lead by the curl founder
himself.
Re: CVE-2022-22623
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Phil Cole via curl-library <curl-library_at_lists.haxx.se>
Date: Thu, 17 Mar 2022 09:53:23 +0000
On Thu, 17 Mar 2022 at 09:16, Daniel Stenberg via curl-library <
curl-library_at_lists.haxx.se> wrote:
> Hi team,
>
> Apple recently posted https://support.apple.com/en-us/HT213183 about a
> macOS
> upgrade, in which they have also updated curl.
>
> I presume this is just a typo and they actually meant another number. I
> have
> reached out and asked for an update/clarification.
>
>
Doing a search for the CVE pulled up, for me, the Apple page and this one:
https://www.cybersecurity-help.cz/vdb/SB2022031431. Doesn't really say
very much other than security restrictions can be bypassed due to an
unspecified vulnerability in curl.
Hope you can get more details from Apple.
Phil
Date: Thu, 17 Mar 2022 09:53:23 +0000
On Thu, 17 Mar 2022 at 09:16, Daniel Stenberg via curl-library <
curl-library_at_lists.haxx.se> wrote:
> Hi team,
>
> Apple recently posted https://support.apple.com/en-us/HT213183 about a
> macOS
> upgrade, in which they have also updated curl.
>
> I presume this is just a typo and they actually meant another number. I
> have
> reached out and asked for an update/clarification.
>
>
Doing a search for the CVE pulled up, for me, the Apple page and this one:
https://www.cybersecurity-help.cz/vdb/SB2022031431. Doesn't really say
very much other than security restrictions can be bypassed due to an
unspecified vulnerability in curl.
Hope you can get more details from Apple.
Phil
-- Unsubscribe: https://lists.haxx.se/listinfo/curl-library Etiquette: https://curl.haxx.se/mail/etiquette.htmlReceived on 2022-03-17