[CLSA-2026:1783937591] curl: Fix of CVE-2026-11856
Type:
security
Severity:
Moderate
Release date:
2026-07-13 10:13:27 UTC
Description:
- CVE-2026-11856: flush Digest auth state on origin or credential change to avoid leaking the Authorization header across origins on handle reuse
CVEs fixed:
Updated packages:
  • curl-7.61.1-22.el8.tuxcare.els20.x86_64.rpm
    sha:dca941bf9a459d33b4ed16a963112100027c4505233873a99faf6a11b8063432
  • curl-minimal-7.61.1-22.el8.tuxcare.els20.x86_64.rpm
    sha:3a3ba3cde9eb0402192c912a420d253b89040ea99b876dcc932146f47b277fba
  • libcurl-7.61.1-22.el8.tuxcare.els20.i686.rpm
    sha:dc7a41e8fabada4182f55e97ed536e7fd0e57b480a124130e85b4b8d7bfd4fc0
  • libcurl-7.61.1-22.el8.tuxcare.els20.x86_64.rpm
    sha:5bb78908a7d1fe21abf34ee02dd09962859f0675b3aca17c55a7cf7c1ff1833a
  • libcurl-devel-7.61.1-22.el8.tuxcare.els20.i686.rpm
    sha:428a6c96ac15a2af80a75729bb111bbc34e58cf161c3d0b986e2be2d030da7fa
  • libcurl-devel-7.61.1-22.el8.tuxcare.els20.x86_64.rpm
    sha:4c4e4d521b3a39214dea3f38d3fd42cc99f1f37aae6157c0ab0e66741f0edfbd
  • libcurl-minimal-7.61.1-22.el8.tuxcare.els20.i686.rpm
    sha:07d9a1b5c5c4bef1bd99a182798a529d0dce53bdd9fff97adc609723793e5992
  • libcurl-minimal-7.61.1-22.el8.tuxcare.els20.x86_64.rpm
    sha:9ece3df11cc0a1fb33b375217a523b82cd8b7b67265f514392d51bce50aa1a92
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.