Oval Definition:oval:org.opensuse.security:def:5130
Revision Date:2021-10-11Version:1
Title:Security update for curl (Moderate)
Description:

This update for curl fixes the following issues:



- CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).
Family:unixClass:patch
Status:Reference(s):1170643
1176069
1190373
1190374
CVE-2002-2443
CVE-2008-4316
CVE-2009-0758
CVE-2009-0844
CVE-2009-0845
CVE-2009-0846
CVE-2009-0847
CVE-2009-2624
CVE-2009-3295
CVE-2009-4212
CVE-2009-5029
CVE-2010-0001
CVE-2010-0283
CVE-2010-0628
CVE-2010-1163
CVE-2010-1205
CVE-2010-1320
CVE-2010-1321
CVE-2010-1322
CVE-2010-1323
CVE-2010-1324
CVE-2010-1646
CVE-2010-2244
CVE-2010-4020
CVE-2010-4021
CVE-2010-4022
CVE-2011-0010
CVE-2011-0281
CVE-2011-0282
CVE-2011-0284
CVE-2011-0285
CVE-2011-1002
CVE-2011-1527
CVE-2011-1528
CVE-2011-1529
CVE-2011-1530
CVE-2011-2501
CVE-2011-3026
CVE-2011-3045
CVE-2011-3048
CVE-2012-1012
CVE-2012-1013
CVE-2012-1016
CVE-2012-1571
CVE-2012-2337
CVE-2012-3386
CVE-2012-3524
CVE-2012-4412
CVE-2013-0242
CVE-2013-1415
CVE-2013-1417
CVE-2013-1418
CVE-2013-1775
CVE-2013-1776
CVE-2013-1914
CVE-2013-1991
CVE-2013-2000
CVE-2013-2207
CVE-2013-4143
CVE-2013-4237
CVE-2013-4332
CVE-2013-4458
CVE-2013-6487
CVE-2013-7353
CVE-2013-7354
CVE-2014-0475
CVE-2014-3775
CVE-2014-4043
CVE-2014-4341
CVE-2014-4342
CVE-2014-4343
CVE-2014-4344
CVE-2014-4345
CVE-2014-4607
CVE-2014-5119
CVE-2014-5351
CVE-2014-6040
CVE-2014-8137
CVE-2014-8138
CVE-2014-8157
CVE-2014-8158
CVE-2014-9029
CVE-2020-14386
CVE-2020-3899
CVE-2021-22946
CVE-2021-22947
SUSE-SU-2020:1198-1
SUSE-SU-2020:2577-1
SUSE-SU-2021:3332-1
Platform(s):openSUSE 13.1
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Availability 15 SP2
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise High Performance Computing 15-ESPOS
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • coreutils-8.12-6.25.29.1 is installed
  • OR coreutils-lang-8.12-6.25.29.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • file-5.19-2 is installed
  • OR file-magic-5.19-2 is installed
  • OR libmagic1-5.19-2 is installed
  • OR libmagic1-32bit-5.19-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • NetworkManager-1.0.12-8 is installed
  • OR NetworkManager-lang-1.0.12-8 is installed
  • OR libnm-glib-vpn1-1.0.12-8 is installed
  • OR libnm-glib4-1.0.12-8 is installed
  • OR libnm-util2-1.0.12-8 is installed
  • OR libnm0-1.0.12-8 is installed
  • OR typelib-1_0-NM-1_0-1.0.12-8 is installed
  • OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed
  • OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • augeas-1.2.0-15 is installed
  • OR augeas-lenses-1.2.0-15 is installed
  • OR libaugeas0-1.2.0-15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • finch-2.12.0-3.3 is installed
  • OR libpurple-2.12.0-3.3 is installed
  • OR libpurple-branding-upstream-2.12.0-3.3 is installed
  • OR libpurple-lang-2.12.0-3.3 is installed
  • OR libpurple-plugin-sametime-2.12.0-3.3 is installed
  • OR libpurple-tcl-2.12.0-3.3 is installed
  • OR pidgin-2.12.0-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND Package Information
  • ctdb-4.6.7+git.38.90b2cdb4f22-3.7.1 is installed
  • OR ldirectord-4.0.1+git.1495055229.643177f1-2.4.2 is installed
  • OR monitoring-plugins-metadata-4.0.1+git.1495055229.643177f1-2.4.2 is installed
  • OR resource-agents-4.0.1+git.1495055229.643177f1-2.4.2 is installed
  • OR samba-4.6.7+git.38.90b2cdb4f22-3.7.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-120 is installed
  • OR dlm-kmp-default-4.12.14-120 is installed
  • OR gfs2-kmp-default-4.12.14-120 is installed
  • OR ocfs2-kmp-default-4.12.14-120 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-5.3.18-24.15 is installed
  • OR dlm-kmp-default-5.3.18-24.15 is installed
  • OR gfs2-kmp-default-5.3.18-24.15 is installed
  • OR kernel-default-5.3.18-24.15 is installed
  • OR ocfs2-kmp-default-5.3.18-24.15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed
  • AND
  • libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed
  • OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed
  • OR libwebkit2gtk3-lang-2.28.2-3.54 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed
  • OR webkit2gtk3-2.28.2-3.54 is installed
  • OR webkit2gtk3-devel-2.28.2-3.54 is installed
  • OR Package Information
  • SUSE Linux Enterprise High Performance Computing 15-LTSS is installed
  • AND
  • libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed
  • OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed
  • OR libwebkit2gtk3-lang-2.28.2-3.54 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed
  • OR webkit2gtk3-2.28.2-3.54 is installed
  • OR webkit2gtk3-devel-2.28.2-3.54 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_43-52_6-default-1-2.3 is installed
  • OR kgraft-patch-3_12_43-52_6-xen-1-2.3 is installed
  • OR kgraft-patch-SLE12_Update_5-1-2.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_73-5-default-2-2.3.2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND portus-2.2.0-20.3.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.7-22.2 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.7-22.2 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.7-22.2 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.7-22.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND Package Information
  • kernel-ec2-3.12.32-33.1 is installed
  • OR kernel-ec2-devel-3.12.32-33.1 is installed
  • OR kernel-ec2-extra-3.12.32-33.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND python3-3.4.1-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2 is installed
  • AND python-pycrypto-2.6.1-10.3.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • MozillaFirefox-10.0-0.3.2 is installed
  • OR MozillaFirefox-translations-10.0-0.3.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • ruby-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND amavisd-new-2.7.0-18.7.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11-SECURITY is installed
  • AND Package Information
  • libldap-openssl1-2_4-2-2.4.26-0.35.1 is installed
  • OR libldap-openssl1-2_4-2-32bit-2.4.26-0.35.1 is installed
  • OR libldap-openssl1-2_4-2-x86-2.4.26-0.35.1 is installed
  • OR openldap2-client-openssl1-2.4.26-0.35.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND apache2-mod_nss-1.0.8-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • git-1.8.5.6-15.1 is installed
  • OR git-core-1.8.5.6-15.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libvncclient0-0.9.9-16 is installed
  • OR libvncserver0-0.9.9-16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-1 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND SuSEfirewall2-3.6.312.333-3.13 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND libcurl-devel-7.60.0-11.28.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • libmysqlclient-devel-10.0.26-20.10.2 is installed
  • OR libmysqlclient18-10.0.26-20.10.2 is installed
  • OR libmysqlclient18-32bit-10.0.26-20.10.2 is installed
  • OR libmysqlclient_r18-10.0.26-20.10.2 is installed
  • OR libmysqld-devel-10.0.26-20.10.2 is installed
  • OR libmysqld18-10.0.26-20.10.2 is installed
  • OR mariadb-10.0.26-20.10.2 is installed
  • OR mariadb-client-10.0.26-20.10.2 is installed
  • OR mariadb-errormessages-10.0.26-20.10.2 is installed
  • OR mariadb-tools-10.0.26-20.10.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • dbus-1-1.8.22-24.8.1 is installed
  • OR dbus-1-devel-1.8.22-24.8.1 is installed
  • OR dbus-1-devel-doc-1.8.22-24.8.1 is installed
  • OR dbus-1-x11-1.8.22-24.8.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND dhcp-devel-4.3.3-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • FastCGI-2.4.0-168 is installed
  • OR FastCGI-devel-2.4.0-168 is installed
  • OR perl-FastCGI-2.4.0-168 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.85 is installed
  • OR ImageMagick-devel-6.8.8.1-71.85 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed
  • OR libMagick++-devel-6.8.8.1-71.85 is installed
  • OR perl-PerlMagick-6.8.8.1-71.85 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • flash-player-11.2.202.411-4.1 is installed
  • OR flash-player-gnome-11.2.202.411-4.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • kernel-default-3.12.51-60.20.2 is installed
  • OR kernel-default-extra-3.12.51-60.20.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • imap-2007e_suse-22.1 is installed
  • OR libc-client2007e_suse-2007e_suse-22.1 is installed
  • BACK