OVAL Reference oval:org.opensuse.security:def:51894

Oval Definition:

oval:org.opensuse.security:def:51894

Revision Date:	2021-05-27	Version:	1
Title:	Security update for curl (Moderate)
Description:	This update for curl fixes the following issues: - CVE-2021-22898: TELNET stack contents disclosure (bsc#1186114) - CVE-2021-22876: The automatic referer leaks credentials (bsc#1183933) - CVE-2020-8286: Inferior OCSP verification (bsc#1179593) - CVE-2020-8285: FTP wildcard stack overflow (bsc#1179399) - CVE-2020-8284: Trusting FTP PASV responses (bsc#1179398) - CVE-2020-8231: libcurl will pick and use the wrong connection with multiple requests with libcurl's multi API and the 'CURLOPT_CONNECT_ONLY' option (bsc#1175109) - Fix: SFTP uploads result in empty uploaded files (bsc#1177976)
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1119850 1123022 1124356 1128935 1128937 1130746 1133100 1134209 1140290 1141853 1153072 1163927 1163959 1163969 1171456 1171457 1171458 1172205 1173376 1173377 1173378 1173380 1173580 1175109 1177976 1179398 1179399 1179593 1183933 1186114 CVE-2009-0368 CVE-2009-2625 CVE-2009-3560 CVE-2009-3720 CVE-2010-4523 CVE-2012-0247 CVE-2012-0248 CVE-2012-0876 CVE-2012-1147 CVE-2012-1148 CVE-2012-1185 CVE-2012-1186 CVE-2012-1571 CVE-2012-4425 CVE-2012-6702 CVE-2013-4314 CVE-2014-3248 CVE-2014-3710 CVE-2014-7204 CVE-2014-8116 CVE-2014-8117 CVE-2015-1283 CVE-2016-0718 CVE-2016-5300 CVE-2018-20852 CVE-2019-13173 CVE-2019-14553 CVE-2019-14559 CVE-2019-14563 CVE-2019-14575 CVE-2019-3814 CVE-2019-9704 CVE-2019-9705 CVE-2020-0543 CVE-2020-10957 CVE-2020-10958 CVE-2020-10967 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-4044 CVE-2020-8231 CVE-2020-8284 CVE-2020-8285 CVE-2020-8286 CVE-2021-22876 CVE-2021-22898 SUSE-SU-2019:0414-1 SUSE-SU-2019:1389-2 SUSE-SU-2019:2055-1 SUSE-SU-2019:2114-1 SUSE-SU-2020:0568-1 SUSE-SU-2020:1379-1 SUSE-SU-2020:1889-1 SUSE-SU-2020:1933-1 SUSE-SU-2021:1786-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information evince-3.26.0+20180128.1bd86963-lp150.2 is installed OR evince-lang-3.26.0+20180128.1bd86963-lp150.2 is installed OR evince-plugin-pdfdocument-3.26.0+20180128.1bd86963-lp150.2 is installed OR evince-plugin-psdocument-3.26.0+20180128.1bd86963-lp150.2 is installed OR libevdocument3-4-3.26.0+20180128.1bd86963-lp150.2 is installed OR libevview3-3-3.26.0+20180128.1bd86963-lp150.2 is installed OR nautilus-evince-3.26.0+20180128.1bd86963-lp150.2 is installed OR typelib-1_0-EvinceDocument-3_0-3.26.0+20180128.1bd86963-lp150.2 is installed OR typelib-1_0-EvinceView-3_0-3.26.0+20180128.1bd86963-lp150.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libldb1-3.6.3-0.33.39 is installed OR libldb1-32bit-3.6.3-0.33.39 is installed OR libsmbclient0-3.6.3-0.33.39 is installed OR libsmbclient0-32bit-3.6.3-0.33.39 is installed OR libtalloc1-3.4.3-1.50 is installed OR libtalloc1-32bit-3.4.3-1.50 is installed OR libtalloc2-3.6.3-0.33.39 is installed OR libtalloc2-32bit-3.6.3-0.33.39 is installed OR libtdb1-3.6.3-0.33.39 is installed OR libtdb1-32bit-3.6.3-0.33.39 is installed OR libtevent0-3.6.3-0.33.39 is installed OR libtevent0-32bit-3.6.3-0.33.39 is installed OR libwbclient0-3.6.3-0.33.39 is installed OR libwbclient0-32bit-3.6.3-0.33.39 is installed OR samba-3.6.3-0.33.39 is installed OR samba-32bit-3.6.3-0.33.39 is installed OR samba-client-3.6.3-0.33.39 is installed OR samba-client-32bit-3.6.3-0.33.39 is installed OR samba-doc-3.6.3-0.33.39 is installed OR samba-krb-printing-3.6.3-0.33.39 is installed OR samba-winbind-3.6.3-0.33.39 is installed OR samba-winbind-32bit-3.6.3-0.33.39 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND libssh2-1-1.2.9-4.2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libspice-client-glib-2_0-8-0.31-7 is installed OR libspice-client-glib-helper-0.31-7 is installed OR libspice-client-gtk-2_0-4-0.31-7 is installed OR libspice-client-gtk-3_0-4-0.31-7 is installed OR libspice-controller0-0.31-7 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.31-7 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.31-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND ctags-5.8-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information cronie-1.5.1-6.7 is installed OR cronie-anacron-1.5.1-6.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information dovecot23-2.3.3-4.7 is installed OR dovecot23-backend-mysql-2.3.3-4.7 is installed OR dovecot23-backend-pgsql-2.3.3-4.7 is installed OR dovecot23-backend-sqlite-2.3.3-4.7 is installed OR dovecot23-devel-2.3.3-4.7 is installed OR dovecot23-fts-2.3.3-4.7 is installed OR dovecot23-fts-lucene-2.3.3-4.7 is installed OR dovecot23-fts-solr-2.3.3-4.7 is installed OR dovecot23-fts-squat-2.3.3-4.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.3_04-3.22 is installed OR xen-devel-4.12.3_04-3.22 is installed OR xen-tools-4.12.3_04-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.15.1-3.17 is installed OR nodejs8-devel-8.15.1-3.17 is installed OR nodejs8-docs-8.15.1-3.17 is installed OR npm8-8.15.1-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libMagickCore-6_Q16-1-6.8.8.1-8 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-7-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND clamav-0.99.2-25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsystemd0-228-150.58 is installed OR libsystemd0-32bit-228-150.58 is installed OR libudev1-228-150.58 is installed OR libudev1-32bit-228-150.58 is installed OR systemd-228-150.58 is installed OR systemd-32bit-228-150.58 is installed OR systemd-bash-completion-228-150.58 is installed OR systemd-sysvinit-228-150.58 is installed OR udev-228-150.58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information openssh-7.2p2-74.30 is installed OR openssh-askpass-gnome-7.2p2-74.30 is installed OR openssh-fips-7.2p2-74.30 is installed OR openssh-helpers-7.2p2-74.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND clamav-0.100.3-33.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpython2_7-1_0-2.7.13-28.31 is installed OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed OR python-2.7.13-28.31 is installed OR python-32bit-2.7.13-28.31 is installed OR python-base-2.7.13-28.31 is installed OR python-base-32bit-2.7.13-28.31 is installed OR python-curses-2.7.13-28.31 is installed OR python-demo-2.7.13-28.31 is installed OR python-devel-2.7.13-28.31 is installed OR python-doc-2.7.13-28.31 is installed OR python-doc-pdf-2.7.13-28.31 is installed OR python-gdbm-2.7.13-28.31 is installed OR python-idle-2.7.13-28.31 is installed OR python-tk-2.7.13-28.31 is installed OR python-xml-2.7.13-28.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-27.32 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libpainter0-0.9.6-4.8 is installed OR librfxencode0-0.9.6-4.8 is installed OR xrdp-0.9.6-4.8 is installed OR xrdp-devel-0.9.6-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND Package Information curl-7.60.0-4.20.1 is installed OR libcurl4-7.60.0-4.20.1 is installed OR libcurl4-32bit-7.60.0-4.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information dovecot23-2.3.10-4.22 is installed OR dovecot23-backend-mysql-2.3.10-4.22 is installed OR dovecot23-backend-pgsql-2.3.10-4.22 is installed OR dovecot23-backend-sqlite-2.3.10-4.22 is installed OR dovecot23-devel-2.3.10-4.22 is installed OR dovecot23-fts-2.3.10-4.22 is installed OR dovecot23-fts-lucene-2.3.10-4.22 is installed OR dovecot23-fts-solr-2.3.10-4.22 is installed OR dovecot23-fts-squat-2.3.10-4.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-actionpack-4_2-4.2.2-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 6-LTSS is installed AND python-setuptools-18.0.1-4.8 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information nodejs-common-1.0-2 is installed OR nodejs6-6.11.1-11.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed

BACK