Oval Definition:	oval:org.opensuse.security:def:100585
Revision Date: 2020-12-09 Version: 1 Title: (Moderate) Description: This update for curl fixes the following issues: - CVE-2020-8286: Fixed improper OSCP verification in the client side (bsc#1179593). - CVE-2020-8285: Fixed a stack overflow due to FTP wildcard (bsc#1179399). - CVE-2020-8284: Fixed an issue where a malicius FTP server could make curl connect to a different IP (bsc#1179398). Family: unix Class: patch Status: Reference(s): 1179398 1179399 1179593 CVE-2018-19840 CVE-2018-19841 CVE-2018-6767 CVE-2018-7253 CVE-2018-7254 CVE-2019-1010319 CVE-2019-11498 CVE-2020-8284 CVE-2020-8285 CVE-2020-8286 Platform(s): Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND libwavpack1-5.1.0-4.6.1 is installed Definition Synopsis Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE is installed AND Package Information curl-7.66.0-4.11.1 is installed OR libcurl4-7.66.0-4.11.1 is installed
BACK