Package: curl Version: 7.88.1-10+deb12u3 Severity: normal Tags: ipv6 X-Debbugs-Cc: t...@security.debian.org
We use curl as a health check in our keepalived setup. We basically run the following curl command: curl 'ldap://[2a02:2c40:0:a412::389:389]' This works fine in 7.88.1-10+deb12u1, but breaks after upgrading to 7.88.1-10+deb12u3 (version in Debian 12.2). Output with the working version: $ curl -v 'ldap://[2a02:2c40:0:a412::389:389]' * Trying [2a02:2c40:0:a412::389:389]:389... * Connected to 2a02:2c40:0:a412::389:389 (2a02:2c40:0:a412::389:389) * port 389 (#0) * LDAP local: LDAP Vendor = OpenLDAP ; LDAP Version = 20513 * LDAP local: ldap://[2a02:2c40:0:a412::389:389]/ * LDAP local: trying to establish cleartext connection DN: objectClass: top objectClass: OpenLDAProotDSE * Closing connection 0 Output with broken version: $ curl -v 'ldap://[2a02:2c40:0:a412::389:389]' * Trying [2a02:2c40:0:a412::389:389]:389... * Connected to 2a02:2c40:0:a412::389:389 (2a02:2c40:0:a412::389:389) port 389 (#0) * LDAP local: Cannot connect to ldap://2a02:2c40:0:a412::389:389:389, Bad parameter to an ldap routine * Closing connection 0 Looking at the changelog, I assume this issue was introduced in 7.88.1-10+deb12u2 It works for IPv6 if we specify a hostname, but not if we specify an IPv6 address: Regards, Rik -- System Information: Debian Release: 12.2 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-12-amd64 (SMP w/2 CPU threads; PREEMPT) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages curl depends on: ii libc6 2.36-9+deb12u3 ii libcurl4 7.88.1-10+deb12u3 ii zlib1g 1:1.2.13.dfsg-1 curl recommends no packages. curl suggests no packages. -- no debconf information