| Revision Date: | 2020-12-09 | Version: | 1 |
| Title: | (Moderate) |
| Description: |
This update for curl fixes the following issues:
- CVE-2020-8286: Fixed improper OSCP verification in the client side (bsc#1179593). - CVE-2020-8285: Fixed a stack overflow due to FTP wildcard (bsc#1179399). - CVE-2020-8284: Fixed an issue where a malicius FTP server could make curl connect to a different IP (bsc#1179398).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1179398
1179399
1179593
CVE-2018-19840
CVE-2018-19841
CVE-2018-6767
CVE-2018-7253
CVE-2018-7254
CVE-2019-1010319
CVE-2019-11498
CVE-2020-8284
CVE-2020-8285
CVE-2020-8286
|
| Platform(s): | Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND libwavpack1-5.1.0-4.6.1 is installed
|
| Definition Synopsis |
| Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE is installed
AND Package Information
curl-7.66.0-4.11.1 is installed
OR libcurl4-7.66.0-4.11.1 is installed
|