Bug 13673

Summary: [upd 21] curl 8.4.0
Product: [ROSA-based products] ROSA Fresh Reporter: Mikhail Novosyolov <m.novosyolov>
Component: Packages from MainAssignee: ROSA Linux Bugs <bugs>
Status: VERIFIED FIXED QA Contact: ROSA Linux Bugs <bugs>
Severity: critical    
Priority: High CC: a.proklov, e.malashin, v.potapov, y.tumanov
Version: AllFlags: v.potapov: qa_verified+
y.tumanov: secteam_verified+
a.proklov: published+
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: CVE-2023-38545
Whiteboard:
Platform: 2021.1 ROSA Vulnerability identifier:
RPM Package: ISO-related:
Bad POT generating: Upstream:

Description Mikhail Novosyolov 2023-10-12 08:33:43 MSK 
******** QA ADVISORY *******
curl 8.4.0-1
- minor update (обновление минорное, несмотря на смену версии с 7.х на 8.х)
- fixed CVEs, including CVE-2023-38545 (https://www.opennet.ru/opennews/art.shtml?num=59909)
https://abf.io/build_lists/4756207
https://abf.io/build_lists/4756208
https://abf.io/build_lists/4756209
https://abf.io/build_lists/4756210
https://abf.io/build_lists/4756211
Comment 1 e.malashin@rosalinux.ru 2023-10-12 11:57:17 MSK 
The update sent to testings
Comment 2 Vladimir Potapov 2023-10-13 12:37:21 MSK 
curl-8.4.0-1
https://abf.io/build_lists/4756207
https://abf.io/build_lists/4756208
https://abf.io/build_lists/4756209
https://abf.io/build_lists/4756210
https://abf.io/build_lists/4756211
************************ Advisory *********************
- minor update (обновление минорное, несмотря на смену версии с 7.х на 8.х)
- fixed CVEs, including CVE-2023-38545 
*******************************************************
QA Verified
Comment 3 Yury 2023-10-18 14:46:28 MSK 
secteam_verified