Oval Definition:oval:org.opensuse.security:def:56152
Revision Date:2020-12-01Version:1
Title:Security update for curl (Moderate)
Description:

This update for curl fixes the following issues:

- CVE-2017-1000100: TFP sends more than buffer size and it could lead to a denial of service (bsc#1051644) - CVE-2017-1000101: URL globbing out of bounds read could lead to a denial of service (bsc#1051643)
Family:unixClass:patch
Status:Reference(s):1027575
1038564
1042892
1046191
1050751
1051643
1051644
1053153
1065386
1069708
1104668
1157763
914890
916927
924663
928962
934401
938412
944208
944209
985612
CVE-2009-1892
CVE-2010-1172
CVE-2010-1172
CVE-2010-2156
CVE-2010-3611
CVE-2010-3616
CVE-2011-0413
CVE-2011-0997
CVE-2011-2748
CVE-2011-2749
CVE-2011-4539
CVE-2011-4868
CVE-2012-3570
CVE-2012-3571
CVE-2012-3954
CVE-2012-3955
CVE-2013-0292
CVE-2013-0292
CVE-2013-2266
CVE-2013-6401
CVE-2014-3566
CVE-2014-8127
CVE-2014-8128
CVE-2014-8129
CVE-2014-8130
CVE-2014-8484
CVE-2014-8485
CVE-2014-8501
CVE-2014-8502
CVE-2014-8503
CVE-2014-8504
CVE-2014-8737
CVE-2014-8738
CVE-2014-9655
CVE-2015-2582
CVE-2015-2611
CVE-2015-2617
CVE-2015-2620
CVE-2015-2639
CVE-2015-2641
CVE-2015-2643
CVE-2015-2648
CVE-2015-2661
CVE-2015-3152
CVE-2015-4737
CVE-2015-4752
CVE-2015-4756
CVE-2015-4757
CVE-2015-4761
CVE-2015-4767
CVE-2015-4769
CVE-2015-4771
CVE-2015-4772
CVE-2015-5234
CVE-2015-5235
CVE-2015-8605
CVE-2015-8936
CVE-2016-0705
CVE-2017-1000100
CVE-2017-1000101
CVE-2017-10661
CVE-2017-16612
CVE-2017-16939
CVE-2017-2636
CVE-2017-3732
CVE-2017-3736
CVE-2017-7533
CVE-2017-7645
CVE-2017-8890
CVE-2017-9242
CVE-2018-12539
CVE-2018-1517
CVE-2018-1656
CVE-2018-2940
CVE-2018-2952
CVE-2018-2964
CVE-2018-2973
CVE-2019-15961
SUSE-SU-2015:1420-1
SUSE-SU-2015:1689-1
SUSE-SU-2015:1788-1
SUSE-SU-2016:2511-1
SUSE-SU-2017:2049-1
SUSE-SU-2017:2174-1
SUSE-SU-2017:3214-1
SUSE-SU-2017:3340-1
SUSE-SU-2018:2839-1
SUSE-SU-2019:3177-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.0 NonFree
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND cups-filters-1.20.3-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 NonFree is installed
  • AND opera-54.0.2952.41-lp150.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • gnutls-3.6.7-lp151.2.3 is installed
  • OR gnutls-guile-3.6.7-lp151.2.3 is installed
  • OR libgnutls-dane-devel-3.6.7-lp151.2.3 is installed
  • OR libgnutls-dane0-3.6.7-lp151.2.3 is installed
  • OR libgnutls-devel-3.6.7-lp151.2.3 is installed
  • OR libgnutls-devel-32bit-3.6.7-lp151.2.3 is installed
  • OR libgnutls30-3.6.7-lp151.2.3 is installed
  • OR libgnutls30-32bit-3.6.7-lp151.2.3 is installed
  • OR libgnutlsxx-devel-3.6.7-lp151.2.3 is installed
  • OR libgnutlsxx28-3.6.7-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libtiff3-3.8.2-141.160 is installed
  • OR libtiff3-32bit-3.8.2-141.160 is installed
  • OR tiff-3.8.2-141.160 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND icedtea-web-1.5.3-0.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • curl-7.37.0-37.3 is installed
  • OR libcurl4-7.37.0-37.3 is installed
  • OR libcurl4-32bit-7.37.0-37.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • dbus-1-glib-0.100.2-3 is installed
  • OR dbus-1-glib-32bit-0.100.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_29-default-6-2 is installed
  • OR kgraft-patch-3_12_69-60_64_29-xen-6-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_12-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • git-2.12.3-27.14 is installed
  • OR git-core-2.12.3-27.14 is installed
  • OR git-doc-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-firmware-20170530-21.22 is installed
  • OR ucode-amd-20170530-21.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libvirt-2.0.0-27.42 is installed
  • OR libvirt-client-2.0.0-27.42 is installed
  • OR libvirt-daemon-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.42 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-xen-2.0.0-27.42 is installed
  • OR libvirt-doc-2.0.0-27.42 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.42 is installed
  • OR libvirt-nss-2.0.0-27.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND libapr1-1.5.1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libspice-server1-0.12.8-6 is installed
  • OR spice-0.12.8-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libmodplug1-0.8.9.0+git20170610.f6dd59a-15.4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-magnum-3.1.2~a0~dev20-9 is installed
  • OR openstack-magnum-api-3.1.2~a0~dev20-9 is installed
  • OR openstack-magnum-conductor-3.1.2~a0~dev20-9 is installed
  • OR openstack-magnum-doc-3.1.2~a0~dev20-9 is installed
  • OR python-magnum-3.1.2~a0~dev20-9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND ansible-2.4.6.0-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • postgresql96-9.6.17-3.33 is installed
  • OR postgresql96-contrib-9.6.17-3.33 is installed
  • OR postgresql96-docs-9.6.17-3.33 is installed
  • OR postgresql96-libs-9.6.17-3.33 is installed
  • OR postgresql96-plperl-9.6.17-3.33 is installed
  • OR postgresql96-plpython-9.6.17-3.33 is installed
  • OR postgresql96-pltcl-9.6.17-3.33 is installed
  • OR postgresql96-server-9.6.17-3.33 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND nodejs6-6.17.0-11.27 is installed
    • BACK