Oval Definition:	oval:org.mitre.oval:def:23218
Revision Date: 2014-05-26 Version: 15 Title: ELSA-2011:0918: curl security update (Moderate) Description: The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in curl and other products, always performs credential delegation during GSSAPI authentication, which allows remote servers to impersonate clients via GSSAPI requests. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-2192 ELSA-2011:0918-01 Platform(s): Oracle Linux 6 Product(s): curl Definition Synopsis Oracle Linux 6.x AND rpm test curl is earlier than 0:7.19.7-26.el6_1.1 OR libcurl-devel is earlier than 0:7.19.7-26.el6_1.1 OR libcurl is earlier than 0:7.19.7-26.el6_1.1
BACK