CVE 2020-8286
curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- FEDORA: FEDORA-2020-ceaf490686
- MISC: https://curl.se/docs/C...
- MISC: https://hackerone.com/...
- MLIST: [debian-lts-announce] ...
- FEDORA: FEDORA-2020-7ab62c73bc
- GENTOO: GLSA-202012-14
- CONFIRM: https://security.netap...
- DEBIAN: DSA-4881
- CONFIRM: https://support.apple....
- CONFIRM: https://support.apple....
- CONFIRM: https://support.apple....
- FULLDISC: 20210427 APPLE-SA-2021...
- FULLDISC: 20210427 APPLE-SA-2021...
- FULLDISC: 20210427 APPLE-SA-2021...
- CONFIRM: https://cert-portal.si...
- MISC: https://www.oracle.com...
- MISC: https://www.oracle.com...
- CONFIRM: https://cert-portal.si...
- MISC: https://www.oracle.com...
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)