Question Assistance Required for curl/libcurl Vulnerabilities in Plesk Chroot

Thomas Oryon

Regular Pleskian
Server operating system version
RHEl 9
Plesk version and microupdate number
18.0.78
Dear Plesk Support Team,

Our vulnerability scan detected outdated curl and libcurl files inside the Plesk vhost/chroot directories, including:

/app1/vhosts/chroot/usr/bin/curl
/app1/vhosts/chroot/usr/lib64/libcurl.so.4

Please advise on the correct and supported method to update or remove these files.

Should we update the server’s curl and libcurl packages and then rebuild the Plesk chroot environment?

Please confirm whether manually removing these files may affect websites, scheduled tasks, scripts, or chrooted SSH access.

Also, confirm whether it is necessary for plesk to run smoothly for cron, scheduler.

Kindly provide the recommended remediation steps.

Awaiting your reply.
 
Back
Top