Oval Definition:	oval:org.mitre.oval:def:29165
Revision Date: 2015-08-17 Version: 5 Title: SUSE-SU-2015:0990-1 -- Security update for curl (moderate) Description: curl was updated to fix five security issues.The following vulnerabilities were fixed:* CVE-2015-3143: curl could re-use NTML authenticateds connections* CVE-2015-3144: curl could access memory out of bounds with zero length host names* CVE-2015-3145: curl cookie parser could access memory out of boundary* CVE-2015-3148: curl could treat Negotiate as not connection-oriented* CVE-2015-3153: curl could have sent sensitive HTTP headers also to proxies Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2015-3143 CVE-2015-3144 CVE-2015-3145 CVE-2015-3148 CVE-2015-3153 SUSE-SU-2015:0990-1 Platform(s): SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Server 12 Product(s): curl Definition Synopsis Operation system section SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Desktop 12 is installed AND Packages match section curl is earlier than 0:7.37.0-15.1 OR curl-debuginfo is earlier than 0:7.37.0-15.1 OR curl-debugsource is earlier than 0:7.37.0-15.1 OR libcurl4 is earlier than 0:7.37.0-15.1 OR libcurl4-debuginfo is earlier than 0:7.37.0-15.1 OR libcurl4-32bit is earlier than 0:7.37.0-15.1 OR libcurl4-debuginfo-32bit is earlier than 0:7.37.0-15.1
BACK