[CLSA-2026:1778890582] curl: Fix of CVE-2026-5545
Type:
security
Severity:
Moderate
Release date:
2026-05-16 00:16:27 UTC
Description:
- CVE-2026-5545: wrong reuse of HTTP Negotiate connection; only allow an existing connection to be reused and "upgraded" to NTLM when neither NTLM nor Negotiate authentication is in flight on it
Updated packages:
  • curl-7.76.1-31.el9_2.1.tuxcare.els10.x86_64.rpm
    sha:5ebd36efd2254973b389736f4f1373d765da11391f488dd166c32e3578574336
  • curl-minimal-7.76.1-31.el9_2.1.tuxcare.els10.x86_64.rpm
    sha:36c3e67fa78ed6410939f5e927bbd3c92e6d9f39d9188d1a6c6ac150591e7e4d
  • libcurl-7.76.1-31.el9_2.1.tuxcare.els10.i686.rpm
    sha:a1f74b355ea88a80c21862507f3ac626246d3da9a092e26ddf1fcb16f03e68e8
  • libcurl-7.76.1-31.el9_2.1.tuxcare.els10.x86_64.rpm
    sha:28b96a057b1d23f9b40c0892a5525249f6f2ff7ec2a38225d5379af1cf9c76fe
  • libcurl-devel-7.76.1-31.el9_2.1.tuxcare.els10.i686.rpm
    sha:b52407faef36e19de4f0e5183089e5d171c80b1bc2c2aed5299204e837f4c01b
  • libcurl-devel-7.76.1-31.el9_2.1.tuxcare.els10.x86_64.rpm
    sha:2e9f71cd427a42463c0f2cfe3ee05eaea54f5c180ce9c950e29feca3f8c4c21a
  • libcurl-minimal-7.76.1-31.el9_2.1.tuxcare.els10.i686.rpm
    sha:7e3e1919b3bff02afb346d6e09973a57e1f76804273588e28a91507713918167
  • libcurl-minimal-7.76.1-31.el9_2.1.tuxcare.els10.x86_64.rpm
    sha:fc91db41ba01ddee17c5e71d7475dcf0231c3dc6f770b4227e85a6bff833784f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.