curl a command line tool for transferring data with URL syntax was affected by CVE-2024-8096. When the TLS backend is GnuTLS, curl may incorrectly handle OCSP stapling. If the OCSP status reports an error other than "revoked" (e.g., "unauthorized"), it is not treated as a bad certificate, potentially allowing invalid certificates to be considered valid.
7.74.0-1.3+deb11u14