OVAL Reference oval:org.opensuse.security:def:20112192

Oval Definition:

oval:org.opensuse.security:def:20112192

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2011-2192
Description:	The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in curl and other products, always performs credential delegation during GSSAPI authentication, which allows remote servers to impersonate clients via GSSAPI requests.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2011-2192 Mitre CVE-2011-2192 SUSE CVE-2011-2192 openSUSE-SU-2012:0199-1 openSUSE-SU-2012:0199-1
Platform(s):	openSUSE 11.4 SUSE Linux Enterprise Desktop 11 SP1 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP1 for VMware SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP1 SUSE Linux Enterprise Software Development Kit 11 SP4	Product(s):
Definition Synopsis
Release Information sle11-sp1-sdk is installed libcurl-devel less than 7.19.7-1.18.1 OR libsatsolver-devel less than 0.14.19-0.3.8 OR libzypp-devel less than 6.37.5-0.5.6 OR ruby-satsolver less than 0.14.19-0.3.8 OR yast2-pkg-bindings-devel-doc less than 2.17.45.5-0.3.1 OR sled11-sp1 is installed curl less than 7.19.7-1.18.1 OR libcurl4-32bit less than 7.19.7-1.18.1 OR libcurl4 less than 7.19.7-1.18.1 OR libzypp less than 6.37.5-0.5.6 OR perl-satsolver less than 0.14.19-0.3.8 OR python-satsolver less than 0.14.19-0.3.8 OR satsolver-tools less than 0.14.19-0.3.8 OR yast2-packager less than 2.17.78.3-0.3.11 OR yast2-pkg-bindings less than 2.17.45.5-0.3.1 OR yast2-wagon less than 2.17.17.8-0.3.1 OR zypper less than 1.3.16-0.3.7 OR sles11-sp1 is installed curl less than 7.19.7-1.18.1 OR libcurl4-32bit less than 7.19.7-1.18.1 OR libcurl4-x86 less than 7.19.7-1.18.1 OR libcurl4 less than 7.19.7-1.18.1 OR libzypp less than 6.37.5-0.5.6 OR perl-satsolver less than 0.14.19-0.3.8 OR python-satsolver less than 0.14.19-0.3.8 OR satsolver-tools less than 0.14.19-0.3.8 OR yast2-packager less than 2.17.78.3-0.3.11 OR yast2-pkg-bindings less than 2.17.45.5-0.3.1 OR yast2-wagon less than 2.17.17.8-0.3.1 OR zypper less than 1.3.16-0.3.7 OR Package Information suse114 is installed AND curl less than 7.21.2-10.13.1 OR libcurl-devel less than 7.21.2-10.13.1 OR libcurl4-32bit less than 7.21.2-10.13.1 OR libcurl4 less than 7.21.2-10.13.1
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26 is installed OR libcurl4-7.19.7-1.26 is installed OR libcurl4-32bit-7.19.7-1.26 is installed OR libcurl4-x86-7.19.7-1.26 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42 is installed OR libcurl4-7.19.7-1.42 is installed OR libcurl4-32bit-7.19.7-1.42 is installed OR libcurl4-x86-7.19.7-1.42 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libcurl-devel-7.19.7-1.42 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26 is installed OR libcurl4-7.19.7-1.26 is installed OR libcurl4-32bit-7.19.7-1.26 is installed OR libcurl4-x86-7.19.7-1.26 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42 is installed OR libcurl4-7.19.7-1.42 is installed OR libcurl4-32bit-7.19.7-1.42 is installed OR libcurl4-x86-7.19.7-1.42 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26.8 is installed OR libcurl4-7.19.7-1.26.8 is installed OR libcurl4-32bit-7.19.7-1.26.8 is installed OR libcurl4-x86-7.19.7-1.26.8 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42.1 is installed OR libcurl4-7.19.7-1.42.1 is installed OR libcurl4-32bit-7.19.7-1.42.1 is installed OR libcurl4-x86-7.19.7-1.42.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information curl-7.19.7-1.26 is installed OR libcurl4-7.19.7-1.26 is installed OR libcurl4-32bit-7.19.7-1.26 is installed OR libcurl4-x86-7.19.7-1.26 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libcurl-devel-7.19.7-1.42 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26 is installed OR libcurl4-7.19.7-1.26 is installed OR libcurl4-32bit-7.19.7-1.26 is installed OR libcurl4-x86-7.19.7-1.26 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42 is installed OR libcurl4-7.19.7-1.42 is installed OR libcurl4-32bit-7.19.7-1.42 is installed OR libcurl4-x86-7.19.7-1.42 is installed OR Package Information SUSE Linux Enterprise Server 11-SECURITY is installed AND curl-openssl1-7.19.7-1.55 is installed OR libcurl4-openssl1-7.19.7-0.38 is installed OR libcurl4-openssl1-32bit-7.19.7-0.38 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26 is installed OR libcurl4-7.19.7-1.26 is installed OR libcurl4-32bit-7.19.7-1.26 is installed OR libcurl4-x86-7.19.7-1.26 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42 is installed OR libcurl4-7.19.7-1.42 is installed OR libcurl4-32bit-7.19.7-1.42 is installed OR libcurl4-x86-7.19.7-1.42 is installed OR Package Information SUSE Linux Enterprise Server 11-SECURITY is installed AND curl-openssl1-7.19.7-1.55 is installed OR libcurl4-openssl1-7.19.7-0.38 is installed OR libcurl4-openssl1-32bit-7.19.7-0.38 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR libzypp-6.37.5-0.5 is installed OR perl-satsolver-0.14.19-0.3 is installed OR python-satsolver-0.14.19-0.3 is installed OR satsolver-tools-0.14.19-0.3 is installed OR yast2-packager-2.17.78.3-0.3 is installed OR yast2-pkg-bindings-2.17.45.5-0.3 is installed OR yast2-wagon-2.17.17.8-0.3 is installed OR zypper-1.3.16-0.3 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libzypp-6.37.5-0.5 is installed OR perl-satsolver-0.14.19-0.3 is installed OR python-satsolver-0.14.19-0.3 is installed OR satsolver-tools-0.14.19-0.3 is installed OR yast2-packager-2.17.78.3-0.3 is installed OR yast2-pkg-bindings-2.17.45.5-0.3 is installed OR yast2-wagon-2.17.17.8-0.3 is installed OR zypper-1.3.16-0.3 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26 is installed OR libcurl4-7.19.7-1.26 is installed OR libcurl4-32bit-7.19.7-1.26 is installed OR libcurl4-x86-7.19.7-1.26 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42 is installed OR libcurl4-7.19.7-1.42 is installed OR libcurl4-32bit-7.19.7-1.42 is installed OR libcurl4-x86-7.19.7-1.42 is installed OR Package Information SUSE Linux Enterprise Server 11-SECURITY is installed AND curl-openssl1-7.19.7-1.55 is installed OR libcurl4-openssl1-7.19.7-0.38 is installed OR libcurl4-openssl1-32bit-7.19.7-0.38 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libcurl-devel-7.19.7-1.42 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR libzypp-6.37.5-0.5 is installed OR perl-satsolver-0.14.19-0.3 is installed OR python-satsolver-0.14.19-0.3 is installed OR satsolver-tools-0.14.19-0.3 is installed OR yast2-packager-2.17.78.3-0.3 is installed OR yast2-pkg-bindings-2.17.45.5-0.3 is installed OR yast2-wagon-2.17.17.8-0.3 is installed OR zypper-1.3.16-0.3 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libcurl4-x86-7.19.7-1.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed AND curl-7.19.7-1.18 is installed OR libcurl4-7.19.7-1.18 is installed OR libcurl4-32bit-7.19.7-1.18 is installed OR libzypp-6.37.5-0.5 is installed OR perl-satsolver-0.14.19-0.3 is installed OR python-satsolver-0.14.19-0.3 is installed OR satsolver-tools-0.14.19-0.3 is installed OR yast2-packager-2.17.78.3-0.3 is installed OR yast2-pkg-bindings-2.17.45.5-0.3 is installed OR yast2-wagon-2.17.17.8-0.3 is installed OR zypper-1.3.16-0.3 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26 is installed OR libcurl4-7.19.7-1.26 is installed OR libcurl4-32bit-7.19.7-1.26 is installed OR libcurl4-x86-7.19.7-1.26 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42 is installed OR libcurl4-7.19.7-1.42 is installed OR libcurl4-32bit-7.19.7-1.42 is installed OR libcurl4-x86-7.19.7-1.42 is installed OR Package Information SUSE Linux Enterprise Server 11-SECURITY is installed AND curl-openssl1-7.19.7-1.55 is installed OR libcurl4-openssl1-7.19.7-0.38 is installed OR libcurl4-openssl1-32bit-7.19.7-0.38 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libcurl-devel-7.19.7-1.42.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18.1 is installed OR libcurl4-7.19.7-1.18.1 is installed OR libcurl4-32bit-7.19.7-1.18.1 is installed OR libcurl4-x86-7.19.7-1.18.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42.1 is installed OR libcurl4-7.19.7-1.42.1 is installed OR libcurl4-32bit-7.19.7-1.42.1 is installed OR libcurl4-x86-7.19.7-1.42.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26.8 is installed OR libcurl4-7.19.7-1.26.8 is installed OR libcurl4-32bit-7.19.7-1.26.8 is installed OR libcurl4-x86-7.19.7-1.26.8 is installed OR Package Information SUSE Linux Enterprise Server 11-SECURITY is installed AND curl-openssl1-7.19.7-1.55.1 is installed OR libcurl4-openssl1-7.19.7-0.38.1 is installed OR libcurl4-openssl1-32bit-7.19.7-0.38.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND curl-7.19.7-1.18.1 is installed OR libcurl4-7.19.7-1.18.1 is installed OR libcurl4-32bit-7.19.7-1.18.1 is installed OR libcurl4-x86-7.19.7-1.18.1 is installed OR libzypp-6.37.5-0.5.6 is installed OR perl-satsolver-0.14.19-0.3.8 is installed OR python-satsolver-0.14.19-0.3.8 is installed OR satsolver-tools-0.14.19-0.3.8 is installed OR yast2-packager-2.17.78.3-0.3.11 is installed OR yast2-pkg-bindings-2.17.45.5-0.3.1 is installed OR yast2-wagon-2.17.17.8-0.3.1 is installed OR zypper-1.3.16-0.3.7 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed AND curl-7.19.7-1.18.1 is installed OR libcurl4-7.19.7-1.18.1 is installed OR libcurl4-32bit-7.19.7-1.18.1 is installed OR libzypp-6.37.5-0.5.6 is installed OR perl-satsolver-0.14.19-0.3.8 is installed OR python-satsolver-0.14.19-0.3.8 is installed OR satsolver-tools-0.14.19-0.3.8 is installed OR yast2-packager-2.17.78.3-0.3.11 is installed OR yast2-pkg-bindings-2.17.45.5-0.3.1 is installed OR yast2-wagon-2.17.17.8-0.3.1 is installed OR zypper-1.3.16-0.3.7 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND curl-7.19.7-1.18.1 is installed OR libcurl4-7.19.7-1.18.1 is installed OR libcurl4-32bit-7.19.7-1.18.1 is installed OR libcurl4-x86-7.19.7-1.18.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND curl-7.19.7-1.42.1 is installed OR libcurl4-7.19.7-1.42.1 is installed OR libcurl4-32bit-7.19.7-1.42.1 is installed OR libcurl4-x86-7.19.7-1.42.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.26.8 is installed OR libcurl4-7.19.7-1.26.8 is installed OR libcurl4-32bit-7.19.7-1.26.8 is installed OR libcurl4-x86-7.19.7-1.26.8 is installed OR Package Information SUSE Linux Enterprise Server 11-SECURITY is installed AND curl-openssl1-7.19.7-1.55.1 is installed OR libcurl4-openssl1-7.19.7-0.38.1 is installed OR libcurl4-openssl1-32bit-7.19.7-0.38.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND curl-7.19.7-1.18.1 is installed OR libcurl4-7.19.7-1.18.1 is installed OR libcurl4-32bit-7.19.7-1.18.1 is installed OR libcurl4-x86-7.19.7-1.18.1 is installed OR libzypp-6.37.5-0.5.6 is installed OR perl-satsolver-0.14.19-0.3.8 is installed OR python-satsolver-0.14.19-0.3.8 is installed OR satsolver-tools-0.14.19-0.3.8 is installed OR yast2-packager-2.17.78.3-0.3.11 is installed OR yast2-pkg-bindings-2.17.45.5-0.3.1 is installed OR yast2-wagon-2.17.17.8-0.3.1 is installed OR zypper-1.3.16-0.3.7 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed AND curl-7.19.7-1.18.1 is installed OR libcurl4-7.19.7-1.18.1 is installed OR libcurl4-32bit-7.19.7-1.18.1 is installed OR libzypp-6.37.5-0.5.6 is installed OR perl-satsolver-0.14.19-0.3.8 is installed OR python-satsolver-0.14.19-0.3.8 is installed OR satsolver-tools-0.14.19-0.3.8 is installed OR yast2-packager-2.17.78.3-0.3.11 is installed OR yast2-pkg-bindings-2.17.45.5-0.3.1 is installed OR yast2-wagon-2.17.17.8-0.3.1 is installed OR zypper-1.3.16-0.3.7 is installed

BACK