Oval Definition:	oval:org.opensuse.security:def:4963
Revision Date: 2020-12-10 Version: 1 Title: Security update for curl (Moderate) Description: This update for curl fixes the following issues: - CVE-2020-8286: Fixed improper OSCP verification in the client side (bsc#1179593). - CVE-2020-8285: Fixed a stack overflow due to FTP wildcard (bsc#1179399). - CVE-2020-8284: Fixed an issue where a malicius FTP server could make curl connect to a different IP (bsc#1179398). Family: unix Class: patch Status: Reference(s): 1013708 1013712 1013893 1015171 1047238 1050911 1051510 1054914 1055117 1056686 1060662 1061840 1061843 1064597 1064701 1065600 1065729 1066369 1067720 1071009 1071306 1071995 1078248 1082555 1082635 1085030 1085536 1085539 1086103 1087092 1090734 1091171 1093205 1093697 1094555 1102097 1102379 1102400 1102410 1103990 1104353 1104427 1104745 1104902 1106061 1106284 1106434 1108382 1109837 1111666 1112178 1112374 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113722 1113956 1113994 1114279 1114542 1118689 1119086 1119113 1120046 1120876 1120902 1123105 1123959 1124370 1128432 1129424 1129519 1129664 1131107 1131281 1131489 1131565 1133021 1134291 1134476 1134730 1134738 1134881 1134882 1135153 1135219 1135296 1135642 1135897 1135990 1136039 1136156 1136157 1136261 1136271 1136333 1136346 1136349 1136352 1136496 1136498 1136502 1136682 1137103 1137194 1137322 1137323 1137366 1137884 1137985 1138099 1138100 1138263 1138336 1138374 1138375 1138539 1138589 1138681 1138719 1138732 1139020 1139021 1139101 1139500 1140012 1140426 1140487 1141340 1141450 1141543 1141554 1142019 1142076 1142109 1142117 1142118 1142119 1142496 1142541 1142635 1142685 1142701 1142857 1143300 1143331 1143466 1143706 1143738 1143765 1143841 1143843 1143962 1144123 1144333 1144375 1144474 1144518 1144582 1144718 1144813 1144880 1144886 1144912 1144920 1144979 1145010 1145018 1145051 1145059 1145189 1145235 1145256 1145300 1145302 1145357 1145388 1145389 1145390 1145391 1145392 1145393 1145394 1145395 1145396 1145397 1145408 1145409 1145446 1145661 1145678 1145687 1145920 1145922 1145934 1145937 1145940 1145941 1145942 1145946 1146074 1146084 1146141 1146163 1146215 1146285 1146346 1146351 1146352 1146361 1146368 1146376 1146378 1146381 1146391 1146399 1146413 1146425 1146516 1146519 1146524 1146526 1146529 1146531 1146543 1146547 1146550 1146575 1146589 1146678 1146938 1148031 1148032 1148033 1148034 1148035 1148093 1148133 1148192 1148196 1148198 1148202 1148219 1148297 1148303 1148308 1148363 1148379 1148394 1148527 1148570 1148574 1148616 1148617 1148619 1148698 1148859 1148868 1149053 1149083 1149104 1149105 1149106 1149197 1149214 1149224 1149325 1149376 1149413 1149418 1149424 1149522 1149527 1149539 1149552 1149591 1149602 1149612 1149626 1149652 1149713 1149940 1149976 1150025 1150033 1150112 1150562 1150660 1150727 1150860 1150861 1150933 1151927 1152107 1152624 1158194 1158983 1159058 1161016 1162002 1162063 1163102 1163103 1163104 1163309 1166985 1167104 1168081 1168959 1169194 1169514 1169771 1169795 1170011 1170442 1170592 1170617 1170618 1171124 1171424 1171496 1171497 1171498 1171499 1171529 1171530 1171558 1171732 1171739 1171743 1171753 1171759 1171835 1171841 1171868 1171904 1172247 1172257 1172344 1172458 1172484 1172537 1172538 1172687 1172719 1172759 1172775 1172781 1172782 1172783 1172871 1172872 1172999 1173060 1173074 1173146 1173265 1173280 1173284 1173428 1173514 1173567 1173573 1173659 1173746 1173818 1173820 1173825 1173826 1173833 1173838 1173839 1173845 1173857 1174113 1174115 1174122 1174123 1174186 1174187 1174296 1174343 1174356 1174409 1174438 1174462 1174543 1179398 1179399 1179593 CVE-2002-2443 CVE-2007-6720 CVE-2009-0179 CVE-2009-0844 CVE-2009-0845 CVE-2009-0846 CVE-2009-0847 CVE-2009-2625 CVE-2009-3295 CVE-2009-3560 CVE-2009-3720 CVE-2009-3995 CVE-2009-3996 CVE-2009-4212 CVE-2010-0283 CVE-2010-0628 CVE-2010-1320 CVE-2010-1321 CVE-2010-1322 CVE-2010-1323 CVE-2010-1324 CVE-2010-2522 CVE-2010-2523 CVE-2010-2546 CVE-2010-4000 CVE-2010-4020 CVE-2010-4021 CVE-2010-4022 CVE-2011-0281 CVE-2011-0282 CVE-2011-0284 CVE-2011-0285 CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 CVE-2011-1530 CVE-2011-3602 CVE-2011-3848 CVE-2011-3872 CVE-2012-0876 CVE-2012-1012 CVE-2012-1013 CVE-2012-1016 CVE-2012-1147 CVE-2012-1148 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2013-1415 CVE-2013-1417 CVE-2013-1418 CVE-2013-3567 CVE-2013-4761 CVE-2013-4956 CVE-2014-3248 CVE-2014-3253 CVE-2014-4341 CVE-2014-4342 CVE-2014-4343 CVE-2014-4344 CVE-2014-4345 CVE-2014-5351 CVE-2016-9797 CVE-2016-9798 CVE-2016-9802 CVE-2016-9917 CVE-2017-18551 CVE-2018-1336 CVE-2018-16871 CVE-2018-20976 CVE-2018-21008 CVE-2018-8014 CVE-2018-8034 CVE-2018-8037 CVE-2019-10207 CVE-2019-12614 CVE-2019-12817 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14835 CVE-2019-15030 CVE-2019-15031 CVE-2019-15090 CVE-2019-15098 CVE-2019-15099 CVE-2019-15117 CVE-2019-15118 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15222 CVE-2019-15239 CVE-2019-15290 CVE-2019-15292 CVE-2019-15538 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-15666 CVE-2019-15902 CVE-2019-15917 CVE-2019-15919 CVE-2019-15920 CVE-2019-15921 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16746 CVE-2019-19451 CVE-2019-20810 CVE-2019-20908 CVE-2019-9456 CVE-2020-0305 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10769 CVE-2020-10773 CVE-2020-10781 CVE-2020-11863 CVE-2020-11864 CVE-2020-11865 CVE-2020-11866 CVE-2020-12771 CVE-2020-12888 CVE-2020-13974 CVE-2020-14416 CVE-2020-15393 CVE-2020-15780 CVE-2020-8284 CVE-2020-8285 CVE-2020-8286 SUSE-SU-2018:3011-1 SUSE-SU-2019:1353-2 SUSE-SU-2019:1744-1 SUSE-SU-2019:2424-1 SUSE-SU-2019:3391-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:1621-2 SUSE-SU-2020:2107-1 SUSE-SU-2020:3739-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.418-0.3.1 is installed OR flash-player-gnome-11.2.202.418-0.3.1 is installed OR flash-player-kde4-11.2.202.418-0.3.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information expat-2.1.0-13 is installed OR libexpat1-2.1.0-13 is installed OR libexpat1-32bit-2.1.0-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bash-4.3-78 is installed OR bash-doc-4.3-78 is installed OR bash-lang-4.3-78 is installed OR libreadline6-6.3-78 is installed OR libreadline6-32bit-6.3-78 is installed OR readline-doc-6.3-78 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information glib2-lang-2.48.2-10 is installed OR glib2-tools-2.48.2-10 is installed OR libgio-2_0-0-2.48.2-10 is installed OR libgio-2_0-0-32bit-2.48.2-10 is installed OR libgio-fam-2.48.2-10 is installed OR libglib-2_0-0-2.48.2-10 is installed OR libglib-2_0-0-32bit-2.48.2-10 is installed OR libgmodule-2_0-0-2.48.2-10 is installed OR libgmodule-2_0-0-32bit-2.48.2-10 is installed OR libgobject-2_0-0-2.48.2-10 is installed OR libgobject-2_0-0-32bit-2.48.2-10 is installed OR libgthread-2_0-0-2.48.2-10 is installed OR libgthread-2_0-0-32bit-2.48.2-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND python-PyYAML-3.10-15.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND libpcreposix0-8.39-7 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND haproxy-1.6.11-10 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_39-47-default-1-2.1 is installed OR kgraft-patch-3_12_39-47-xen-1-2.1 is installed OR kgraft-patch-SLE12_Update_4-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-70.2 is installed OR libopenssl0_9_8-0.9.8j-70.2 is installed OR libopenssl0_9_8-32bit-0.9.8j-70.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.39-47.1 is installed OR kernel-ec2-devel-3.12.39-47.1 is installed OR kernel-ec2-extra-3.12.39-47.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-30.1 is installed OR php5-5.5.14-30.1 is installed OR php5-bcmath-5.5.14-30.1 is installed OR php5-bz2-5.5.14-30.1 is installed OR php5-calendar-5.5.14-30.1 is installed OR php5-ctype-5.5.14-30.1 is installed OR php5-curl-5.5.14-30.1 is installed OR php5-dba-5.5.14-30.1 is installed OR php5-dom-5.5.14-30.1 is installed OR php5-enchant-5.5.14-30.1 is installed OR php5-exif-5.5.14-30.1 is installed OR php5-fastcgi-5.5.14-30.1 is installed OR php5-fileinfo-5.5.14-30.1 is installed OR php5-fpm-5.5.14-30.1 is installed OR php5-ftp-5.5.14-30.1 is installed OR php5-gd-5.5.14-30.1 is installed OR php5-gettext-5.5.14-30.1 is installed OR php5-gmp-5.5.14-30.1 is installed OR php5-iconv-5.5.14-30.1 is installed OR php5-intl-5.5.14-30.1 is installed OR php5-json-5.5.14-30.1 is installed OR php5-ldap-5.5.14-30.1 is installed OR php5-mbstring-5.5.14-30.1 is installed OR php5-mcrypt-5.5.14-30.1 is installed OR php5-mysql-5.5.14-30.1 is installed OR php5-odbc-5.5.14-30.1 is installed OR php5-openssl-5.5.14-30.1 is installed OR php5-pcntl-5.5.14-30.1 is installed OR php5-pdo-5.5.14-30.1 is installed OR php5-pear-5.5.14-30.1 is installed OR php5-pgsql-5.5.14-30.1 is installed OR php5-pspell-5.5.14-30.1 is installed OR php5-shmop-5.5.14-30.1 is installed OR php5-snmp-5.5.14-30.1 is installed OR php5-soap-5.5.14-30.1 is installed OR php5-sockets-5.5.14-30.1 is installed OR php5-sqlite-5.5.14-30.1 is installed OR php5-suhosin-5.5.14-30.1 is installed OR php5-sysvmsg-5.5.14-30.1 is installed OR php5-sysvsem-5.5.14-30.1 is installed OR php5-sysvshm-5.5.14-30.1 is installed OR php5-tokenizer-5.5.14-30.1 is installed OR php5-wddx-5.5.14-30.1 is installed OR php5-xmlreader-5.5.14-30.1 is installed OR php5-xmlrpc-5.5.14-30.1 is installed OR php5-xmlwriter-5.5.14-30.1 is installed OR php5-xsl-5.5.14-30.1 is installed OR php5-zip-5.5.14-30.1 is installed OR php5-zlib-5.5.14-30.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.10-3.7 is installed OR tomcat-admin-webapps-9.0.10-3.7 is installed OR tomcat-el-3_0-api-9.0.10-3.7 is installed OR tomcat-jsp-2_3-api-9.0.10-3.7 is installed OR tomcat-lib-9.0.10-3.7 is installed OR tomcat-servlet-4_0-api-9.0.10-3.7 is installed OR tomcat-webapps-9.0.10-3.7 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND compat-libldap-2_3-0-2.3.37-2.30.1 is installed OR libldap-2_4-2-2.4.26-0.30.1 is installed OR libldap-2_4-2-32bit-2.4.26-0.30.1 is installed OR libldap-2_4-2-x86-2.4.26-0.30.1 is installed OR openldap2-2.4.26-0.30.1 is installed OR openldap2-back-meta-2.4.26-0.30.1 is installed OR openldap2-client-2.4.26-0.30.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND compat-libldap-2_3-0-2.3.37-2.30.1 is installed OR libldap-2_4-2-2.4.26-0.30.1 is installed OR libldap-2_4-2-32bit-2.4.26-0.30.1 is installed OR libldap-2_4-2-x86-2.4.26-0.30.1 is installed OR openldap2-2.4.26-0.30.1 is installed OR openldap2-back-meta-2.4.26-0.30.1 is installed OR openldap2-client-2.4.26-0.30.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND amavisd-new-2.7.0-18.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND apache2-mod_nss-1.0.8-0.4.13.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information openvpn-2.3.2-11.1 is installed OR openvpn-auth-pam-plugin-2.3.2-11.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr2.0-4.1 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr2.0-4.1 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr2.0-4.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND dnsmasq-2.71-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libcurl-devel-7.60.0-11.9.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information libstorage-2.25.16.1-3.1 is installed OR libstorage-ruby-2.25.16.1-3.1 is installed OR libstorage5-2.25.16.1-3.1 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information gstreamer-plugins-good-1.8.3-9 is installed OR gstreamer-plugins-good-lang-1.8.3-9 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information cyrus-imapd-2.3.11-60.65.67.1 is installed OR cyrus-imapd-devel-2.3.11-60.65.67.1 is installed OR perl-Cyrus-IMAP-2.3.11-60.65.67.1 is installed OR perl-Cyrus-SIEVE-managesieve-2.3.11-60.65.67.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND java-1_8_0-ibm-devel-1.8.0_sr1.10-2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND LibVNCServer-devel-0.9.9-16 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND dhcp-devel-4.3.3-9 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information finch-2.10.9-8.1 is installed OR libpurple-2.10.9-8.1 is installed OR libpurple-lang-2.10.9-8.1 is installed OR libpurple-meanwhile-2.10.9-8.1 is installed OR libpurple-tcl-2.10.9-8.1 is installed OR pidgin-2.10.9-8.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information dia-0.97.3-4.3 is installed OR dia-lang-0.97.3-4.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information bluez-5.48-5.16 is installed OR bluez-cups-5.48-5.16 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libEMF-1.0.7-3.3 is installed OR libEMF1-1.0.7-3.3 is installed
BACK