Oval Definition:oval:org.opensuse.security:def:106235
Revision Date:2021-10-06Version:1
Title:Security update for curl (Moderate)
Description:

This update for curl fixes the following issues:

- CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).
Family:unixClass:patch
Status:Reference(s):1190373
1190374
CVE-2014-8964
CVE-2015-2325
CVE-2015-2326
CVE-2016-3191
CVE-2021-22946
CVE-2021-22947
SUSE-SU-2021:3297-1
Platform(s):openSUSE Tumbleweed
SUSE Linux Enterprise Server 15 SP1-LTSS
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libpcre2-16-0-10.22-1.3 is installed
  • OR libpcre2-16-0-32bit-10.22-1.3 is installed
  • OR libpcre2-32-0-10.22-1.3 is installed
  • OR libpcre2-32-0-32bit-10.22-1.3 is installed
  • OR libpcre2-8-0-10.22-1.3 is installed
  • OR libpcre2-8-0-32bit-10.22-1.3 is installed
  • OR libpcre2-posix1-10.22-1.3 is installed
  • OR libpcre2-posix1-32bit-10.22-1.3 is installed
  • OR pcre2-devel-10.22-1.3 is installed
  • OR pcre2-devel-static-10.22-1.3 is installed
  • OR pcre2-doc-10.22-1.3 is installed
  • OR pcre2-tools-10.22-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-LTSS is installed
  • AND Package Information
  • curl-7.60.0-25.1 is installed
  • OR libcurl-devel-7.60.0-25.1 is installed
  • OR libcurl4-7.60.0-25.1 is installed
  • OR libcurl4-32bit-7.60.0-25.1 is installed
    • BACK