cURL - Vulernability Table

Someone alerted me to a possible security risk because of cURL. So I checked the cURL - Vulernability Table and found they are in some part right. cURL, libcurl, has a set of known vulnerabilities that are fixed but our Oracle Linux release does not (yet) use the most stable version released. Instead, it uses the version Oracle has included based on Red Hat's sources.

So we may need to do an update across our servers. Especially those connected to the Internet...

No comments: