First published: Thu Sep 23 2021(Updated: )
curl. Multiple issues were addressed by updating to curl version 7.79.1.
Credit: CVE-2021-22946 CVE-2021-22947 CVE-2021-22945 support@hackerone.com support@hackerone.com
Affected Software | Affected Version | How to fix |
---|---|---|
debian/curl | 7.64.0-4+deb10u2 7.64.0-4+deb10u7 7.74.0-1.3+deb11u9 7.74.0-1.3+deb11u10 7.88.1-10+deb12u3 7.88.1-10+deb12u4 8.4.0-2 | |
Apple macOS Monterey | <12.3 | 12.3 |
Haxx Libcurl | >=7.73.0<=7.78.0 | |
Fedoraproject Fedora | =33 | |
Fedoraproject Fedora | =35 | |
Netapp Cloud Backup | ||
NetApp Clustered Data ONTAP | ||
Oracle Mysql Server | >=5.7.0<=5.7.35 | |
Oracle Mysql Server | >=8.0.0<=8.0.26 | |
Netapp H300s Firmware | ||
Netapp H300s | ||
Netapp H500s Firmware | ||
Netapp H500s | ||
Netapp H700s Firmware | ||
Netapp H700s | ||
Netapp H300e Firmware | ||
Netapp H300e | ||
Netapp H500e Firmware | ||
Netapp H500e | ||
Netapp H700e Firmware | ||
Netapp H700e | ||
Netapp H410s Firmware | ||
Netapp H410s | ||
Netapp Solidfire Baseboard Management Controller Firmware | ||
Netapp Solidfire Baseboard Management Controller | ||
Apple macOS | >=12.0.0<12.3 | |
Siemens Sinec Ins | <1.0.1.1 | |
Debian Debian Linux | =11.0 | |
All of | ||
Netapp H300s Firmware | ||
Netapp H300s | ||
All of | ||
Netapp H500s Firmware | ||
Netapp H500s | ||
All of | ||
Netapp H700s Firmware | ||
Netapp H700s | ||
All of | ||
Netapp H300e Firmware | ||
Netapp H300e | ||
All of | ||
Netapp H500e Firmware | ||
Netapp H500e | ||
All of | ||
Netapp H700e Firmware | ||
Netapp H700e | ||
All of | ||
Netapp H410s Firmware | ||
Netapp H410s | ||
All of | ||
Netapp Solidfire Baseboard Management Controller Firmware | ||
Netapp Solidfire Baseboard Management Controller | ||
Splunk Universal Forwarder | >=8.2.0<8.2.12 | |
Splunk Universal Forwarder | >=9.0.0<9.0.6 | |
Splunk Universal Forwarder | =9.1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID for this issue is CVE-2021-22945.
The severity of CVE-2021-22945 is not mentioned in the provided information.
The affected software for CVE-2021-22945 includes curl versions <= 7.73.0 and 7.78.0, as well as macOS Monterey version up to 12.3.
To fix CVE-2021-22945, update your curl installation to version 7.79.1 or later, or update macOS Monterey to a version later than 12.3.
You can find more information about CVE-2021-22945 on the following references: [here](https://support.apple.com/en-us/HT213183), [here](https://curl.se/docs/CVE-2021-22945.html), and [here](https://github.com/curl/curl/commit/43157490a5054bd24256fe12876931e8abc9df49).