Project

General

Profile

Actions
Copy link

Bug #12434

closed

Multiple cURL Vulnerabilities

Added by Kris Phillips about 3 years ago. Updated almost 3 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Operating System
Target version:
2.6.0
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
22.01
Release Notes:
Default
Affected Version:
2.5.2
Affected Architecture:
All

Description

Vulnerabilities outlined here:
https://www.tenable.com/plugins/nessus/153812

CVEs Here:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945

Actions
Copy link
 #1

Updated by Kris Phillips about 3 years ago

cURL has been updated to 7.79.1 pfSense Plus 22.01. This only affects CE at this point.

Actions
Copy link
 #2

Updated by Kris Phillips about 3 years ago

cURL has been updated to 7.79.1 on pfSense CE as well. Both pfSense Plus 22.10 and pfSense 2.6.0 CE have fixes for this that will be applied in the new major update. This redmine can be closed as Resolved.

Actions
Copy link
 #3

Updated by Viktor Gurov almost 3 years ago

  • Status changed from New to Resolved
  • Target version set to 2.6.0
  • Plus Target Version set to 22.01
  • Affected Version set to 2.5.2
Actions
Copy link
 #4

Updated by Viktor Gurov almost 3 years ago

  • Private changed from No to Yes
Actions
Copy link
 #5

Updated by Jim Pingle almost 3 years ago

  • Private changed from Yes to No
Actions
Copy link

Also available in: Atom PDF