Oval Definition:oval:org.opensuse.security:def:52137
Revision Date:2020-12-01Version:1
Title:Security update for curl (Important)
Description:

This update for curl fixes the following issues:

- CVE-2020-8177: Fixed an issue where curl could have been tricked by a malicious server to overwrite a local file when using the -J option (bsc#1173027).
Family:unixClass:patch
Status:Reference(s):1055186
1065600
1065729
1094244
1112178
1113956
1118935
1118987
1154366
1162197
1162200
1167527
1168468
1169972
1171675
1171688
1171742
1172225
1172491
1173027
1173115
1174899
1174922
1174923
1175070
1175071
1175228
1175749
1175882
1176011
1176022
1176038
1176235
1176242
1176278
1176316
1176317
1176318
1176319
1176320
1176321
1176381
1176395
1176410
1176423
1176482
1176507
1176536
1176544
1176545
1176546
1176548
1176659
1176698
1176699
1176700
1176721
1176722
1176725
1176732
1176788
1176789
1176869
1176877
1176935
1176950
1176962
1176966
1176990
1177027
1177030
1177041
1177042
1177043
1177044
1177121
1177206
1177258
1177291
1177293
1177294
1177295
1177296
1178074
862963
CVE-2009-1886
CVE-2009-1888
CVE-2009-2813
CVE-2009-2906
CVE-2009-2948
CVE-2010-0547
CVE-2010-0728
CVE-2010-0787
CVE-2011-0421
CVE-2012-1162
CVE-2012-1163
CVE-2012-1586
CVE-2012-4559
CVE-2012-4560
CVE-2012-4561
CVE-2013-0176
CVE-2013-0221
CVE-2013-0222
CVE-2013-0223
CVE-2014-0017
CVE-2014-3158
CVE-2014-3675
CVE-2014-3676
CVE-2014-3677
CVE-2014-8132
CVE-2015-2331
CVE-2015-3146
CVE-2015-3310
CVE-2015-4041
CVE-2015-4042
CVE-2015-5185
CVE-2015-5276
CVE-2016-0739
CVE-2018-11805
CVE-2019-20807
CVE-2020-0404
CVE-2020-0427
CVE-2020-0431
CVE-2020-0432
CVE-2020-11993
CVE-2020-12673
CVE-2020-12674
CVE-2020-13790
CVE-2020-14381
CVE-2020-14390
CVE-2020-1930
CVE-2020-1931
CVE-2020-25212
CVE-2020-25284
CVE-2020-25641
CVE-2020-25643
CVE-2020-26088
CVE-2020-8177
CVE-2020-9490
SUSE-SU-2018:4215-1
SUSE-SU-2020:0813-1
SUSE-SU-2020:1551-1
SUSE-SU-2020:2266-1
SUSE-SU-2020:2905-1
SUSE-SU-2020:3067-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libpython3_6m1_0-3.6.5-lp150.1 is installed
  • OR python3-base-3.6.5-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libxml2-2.7.6-0.31 is installed
  • OR libxml2-32bit-2.7.6-0.31 is installed
  • OR libxml2-python-2.7.6-0.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • file-5.19-5 is installed
  • OR file-magic-5.19-5 is installed
  • OR libmagic1-5.19-5 is installed
  • OR libmagic1-32bit-5.19-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND cifs-utils-6.4-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libasan2-5.3.1+r233831-12 is installed
  • OR libasan2-32bit-5.3.1+r233831-12 is installed
  • OR libffi4-5.3.1+r233831-12 is installed
  • OR libffi4-32bit-5.3.1+r233831-12 is installed
  • OR libmpx0-5.3.1+r233831-12 is installed
  • OR libmpx0-32bit-5.3.1+r233831-12 is installed
  • OR libmpxwrappers0-5.3.1+r233831-12 is installed
  • OR libmpxwrappers0-32bit-5.3.1+r233831-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • lhasa-0.2.0-5 is installed
  • OR liblhasa0-0.2.0-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • curl-7.60.0-3.29 is installed
  • OR curl-mini-7.60.0-3.29 is installed
  • OR libcurl-devel-32bit-7.60.0-3.29 is installed
  • OR libcurl-mini-devel-7.60.0-3.29 is installed
  • OR libcurl4-mini-7.60.0-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND binutils-2.25.0-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • evince-3.10.3-2.3 is installed
  • OR evince-lang-3.10.3-2.3 is installed
  • OR libevdocument3-4-3.10.3-2.3 is installed
  • OR libevview3-3-3.10.3-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND ctags-5.8-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • res-signingkeys-3.0.38-52.26 is installed
  • OR smt-3.0.38-52.26 is installed
  • OR smt-support-3.0.38-52.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_50-default-12-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_15-12-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • automake-1.13.4-6 is installed
  • OR m4-1.4.16-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libseccomp-2.4.1-11.3 is installed
  • OR libseccomp2-2.4.1-11.3 is installed
  • OR libseccomp2-32bit-2.4.1-11.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.8.0-109.83 is installed
  • OR MozillaFirefox-translations-common-60.8.0-109.83 is installed
  • OR libfreebl3-3.44.1-58.28 is installed
  • OR libfreebl3-32bit-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-3.44.1-58.28 is installed
  • OR libsoftokn3-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-3.44.1-58.28 is installed
  • OR mozilla-nss-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-tools-3.44.1-58.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libXcursor-1.1.14-4.6 is installed
  • OR libXcursor1-1.1.14-4.6 is installed
  • OR libXcursor1-32bit-1.1.14-4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-38.8 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • vim-8.0.1568-5.6 is installed
  • OR vim-data-8.0.1568-5.6 is installed
  • OR vim-data-common-8.0.1568-5.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • dovecot23-2.3.10-4.27 is installed
  • OR dovecot23-backend-mysql-2.3.10-4.27 is installed
  • OR dovecot23-backend-pgsql-2.3.10-4.27 is installed
  • OR dovecot23-backend-sqlite-2.3.10-4.27 is installed
  • OR dovecot23-devel-2.3.10-4.27 is installed
  • OR dovecot23-fts-2.3.10-4.27 is installed
  • OR dovecot23-fts-lucene-2.3.10-4.27 is installed
  • OR dovecot23-fts-solr-2.3.10-4.27 is installed
  • OR dovecot23-fts-squat-2.3.10-4.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND enigmail-2.0.9-3.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.61 is installed
  • OR kernel-default-extra-4.12.14-197.61 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openvpn-2.3.8-16.17 is installed
  • OR openvpn-auth-pam-plugin-2.3.8-16.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • git-2.12.3-27.22 is installed
  • OR git-core-2.12.3-27.22 is installed
  • OR git-doc-2.12.3-27.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1569587091.3f083d63c-3.10 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1569587091.3f083d63c-3.10 is installed
  • OR crowbar-ha-6.0+git.1567673476.1342c3d-3.10 is installed
  • OR crowbar-openstack-6.0+git.1569805311.a94583476-3.10 is installed
  • OR crowbar-ui-1.3.0+git.1568396400.0344a727-11 is installed
  • OR grafana-6.2.5-3.6 is installed
  • OR grafana-monasca-ui-drilldown-1.14.1~dev9-3.6 is installed
  • OR novnc-1.1.0-3.3 is installed
  • OR openstack-cinder-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-api-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-backup-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-scheduler-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-volume-13.0.7~dev16-3.10 is installed
  • OR openstack-dashboard-14.0.4~dev11-3.6 is installed
  • OR openstack-designate-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-agent-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-api-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-central-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-producer-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-sink-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-worker-7.0.1~dev22-3.10 is installed
  • OR openstack-glance-17.0.1~dev30-3.3 is installed
  • OR openstack-glance-api-17.0.1~dev30-3.3 is installed
  • OR openstack-heat-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-api-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-engine-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev23-3.10 is installed
  • OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed
  • OR openstack-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed
  • OR openstack-ironic-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-api-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-conductor-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-python-agent-3.3.3~dev5-3.10 is installed
  • OR openstack-keystone-14.1.1~dev16-3.10 is installed
  • OR openstack-manila-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-api-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-data-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-scheduler-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-share-7.3.1~dev6-4.10 is installed
  • OR openstack-neutron-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-dhcp-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-gbp-5.0.1~dev472-3.10 is installed
  • OR openstack-neutron-ha-tool-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-l3-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-macvtap-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-metadata-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-metering-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-server-13.0.5~dev50-3.10 is installed
  • OR openstack-nova-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-api-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-cells-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-compute-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-conductor-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-console-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-novncproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-placement-api-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-scheduler-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-serialproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-vncproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-octavia-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-amphora-agent-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-api-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-health-manager-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-housekeeping-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-worker-3.1.2~dev45-3.10 is installed
  • OR openstack-sahara-9.0.2~dev12-3.3 is installed
  • OR openstack-sahara-api-9.0.2~dev12-3.3 is installed
  • OR openstack-sahara-engine-9.0.2~dev12-3.3 is installed
  • OR openstack-tempest-19.0.0-15 is installed
  • OR openstack-tempest-test-19.0.0-15 is installed
  • OR openstack-watcher-1.12.1~dev19-4.3 is installed
  • OR openstack-watcher-doc-1.12.1~dev19-4.3 is installed
  • OR python-cinder-13.0.7~dev16-3.10 is installed
  • OR python-cinder-tempest-plugin-0.1.0-11 is installed
  • OR python-designate-7.0.1~dev22-3.10 is installed
  • OR python-glance-17.0.1~dev30-3.3 is installed
  • OR python-heat-11.0.3~dev23-3.10 is installed
  • OR python-horizon-14.0.4~dev11-3.6 is installed
  • OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed
  • OR python-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed
  • OR python-ironic-11.1.4~dev15-3.10 is installed
  • OR python-keystone-14.1.1~dev16-3.10 is installed
  • OR python-manila-7.3.1~dev6-4.10 is installed
  • OR python-neutron-13.0.5~dev50-3.10 is installed
  • OR python-neutron-gbp-5.0.1~dev472-3.10 is installed
  • OR python-nova-18.2.3~dev22-3.10 is installed
  • OR python-octavia-3.1.2~dev45-3.10 is installed
  • OR python-openstack_auth-14.0.4~dev11-3.6 is installed
  • OR python-sahara-9.0.2~dev12-3.3 is installed
  • OR python-tempest-19.0.0-15 is installed
  • OR python-urllib3-1.23-3.9 is installed
  • OR python-watcher-1.12.1~dev19-4.3 is installed
  • OR ruby2.1-rubygem-easy_diff-1.0.0-4.3 is installed
  • OR rubygem-easy_diff-1.0.0-4.3 is installed
    • BACK