Oval Definition:	oval:org.opensuse.security:def:56472
Revision Date: 2020-12-01 Version: 1 Title: Security update for curl (Moderate) Description: This update for curl fixes the following issues: Security issues fixed: - CVE-2017-1000254: FTP PWD response parser out of bounds read (bsc#1061876) - CVE-2017-1000257: IMAP FETCH response out of bounds read (bsc#1063824) Bugs fixed: - Fixed error 'error:1408F10B:SSL routines' when connecting to ftps via proxy (bsc#1060653) Family: unix Class: patch Status: Reference(s): 1001066 1007245 1012260 1012382 1021577 1024041 1024047 1024076 1024079 1026191 1041469 1041894 1049703 1056278 1056280 1056281 1056282 1060653 1061204 1061876 1063824 1064232 1064786 1065464 1066489 1068032 1073210 1075876 1076110 1078436 1079152 1082828 1082962 1083650 1083900 1085185 1085657 1086400 1087007 1087012 1087036 1087086 1087095 1089525 1089895 1090435 1090534 1090888 1090955 1091171 1091551 1092207 1092497 1092552 1092697 1092813 1092904 1094033 1094244 1094248 1094353 1094643 1094767 1094823 1095042 1095453 1096140 1096242 1096281 1096515 1096728 1096790 1097034 1097140 1097356 1097492 1097501 1097551 1097808 1097931 1097961 1098016 1098236 1098425 1098435 1098527 1098599 1099042 1099183 1099279 1099713 1099732 1099792 1099810 1099918 1099924 1099966 1099993 1100089 1100340 1100416 1100418 1100491 1100843 1101296 1104668 1107343 1108771 1108986 1109363 1109465 1110506 1110507 1122293 1122299 1132728 1132729 1132732 1134297 1160968 703591 839074 857131 893359 941939 955131 973378 CVE-2009-0186 CVE-2011-2696 CVE-2011-4182 CVE-2012-1174 CVE-2013-4288 CVE-2014-9496 CVE-2015-0204 CVE-2015-0458 CVE-2015-0459 CVE-2015-0469 CVE-2015-0477 CVE-2015-0478 CVE-2015-0480 CVE-2015-0488 CVE-2015-0491 CVE-2015-1609 CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4871 CVE-2015-4872 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4902 CVE-2015-4903 CVE-2015-4911 CVE-2015-5006 CVE-2016-6823 CVE-2016-7795 CVE-2016-8862 CVE-2017-1000254 CVE-2017-1000257 CVE-2017-13305 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-15130 CVE-2017-16541 CVE-2017-18241 CVE-2017-18249 CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844 CVE-2018-1000199 CVE-2018-1000204 CVE-2018-1065 CVE-2018-1092 CVE-2018-1093 CVE-2018-1094 CVE-2018-11212 CVE-2018-1130 CVE-2018-12376 CVE-2018-12377 CVE-2018-12378 CVE-2018-12379 CVE-2018-12381 CVE-2018-12383 CVE-2018-12385 CVE-2018-12386 CVE-2018-12387 CVE-2018-12539 CVE-2018-13053 CVE-2018-13405 CVE-2018-13406 CVE-2018-1517 CVE-2018-1656 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3665 CVE-2018-5803 CVE-2018-5848 CVE-2018-7492 CVE-2018-9385 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 SUSE-SU-2015:2168-2 SUSE-SU-2016:2952-1 SUSE-SU-2017:1041-1 SUSE-SU-2017:2466-1 SUSE-SU-2017:2831-1 SUSE-SU-2018:1855-1 SUSE-SU-2018:2051-1 SUSE-SU-2018:2632-1 SUSE-SU-2018:2649-1 SUSE-SU-2018:3591-1 SUSE-SU-2019:1392-1 SUSE-SU-2020:0261-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information file-5.32-lp150.5 is installed OR file-magic-5.32-lp150.5 is installed OR libmagic1-5.32-lp150.5 is installed OR libmagic1-32bit-5.32-lp150.5 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.3 is installed OR curl-mini-7.60.0-lp151.5.3 is installed OR libcurl-devel-7.60.0-lp151.5.3 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.3 is installed OR libcurl-mini-devel-7.60.0-lp151.5.3 is installed OR libcurl4-7.60.0-lp151.5.3 is installed OR libcurl4-32bit-7.60.0-lp151.5.3 is installed OR libcurl4-mini-7.60.0-lp151.5.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information curl-7.37.0-37.8 is installed OR libcurl4-7.37.0-37.8 is installed OR libcurl4-32bit-7.37.0-37.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libsndfile1-1.0.25-21 is installed OR libsndfile1-32bit-1.0.25-21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-60.2.2esr-109.46 is installed OR MozillaFirefox-branding-SLE-60-32.3 is installed OR MozillaFirefox-devel-60.2.2esr-109.46 is installed OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed OR apache2-mod_nss-1.0.14-19.6 is installed OR libfreebl3-3.36.4-58.15 is installed OR libfreebl3-32bit-3.36.4-58.15 is installed OR libfreebl3-hmac-3.36.4-58.15 is installed OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed OR libsoftokn3-3.36.4-58.15 is installed OR libsoftokn3-32bit-3.36.4-58.15 is installed OR libsoftokn3-hmac-3.36.4-58.15 is installed OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed OR mozilla-nspr-4.19-19.3 is installed OR mozilla-nspr-32bit-4.19-19.3 is installed OR mozilla-nspr-devel-4.19-19.3 is installed OR mozilla-nss-3.36.4-58.15 is installed OR mozilla-nss-32bit-3.36.4-58.15 is installed OR mozilla-nss-certs-3.36.4-58.15 is installed OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed OR mozilla-nss-devel-3.36.4-58.15 is installed OR mozilla-nss-sysinit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed OR mozilla-nss-tools-3.36.4-58.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libsystemd0-228-117 is installed OR libsystemd0-32bit-228-117 is installed OR libudev1-228-117 is installed OR libudev1-32bit-228-117 is installed OR systemd-228-117 is installed OR systemd-32bit-228-117 is installed OR systemd-bash-completion-228-117 is installed OR systemd-sysvinit-228-117 is installed OR udev-228-117 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_06-43.51 is installed OR xen-doc-html-4.7.6_06-43.51 is installed OR xen-libs-4.7.6_06-43.51 is installed OR xen-libs-32bit-4.7.6_06-43.51 is installed OR xen-tools-4.7.6_06-43.51 is installed OR xen-tools-domU-4.7.6_06-43.51 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND clamav-0.99.2-32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_116-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_31-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20200602-13.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information coreutils-8.25-13.7 is installed OR coreutils-lang-8.25-13.7 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND mongodb-2.4.14-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-default-man-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-default-kgraft-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed OR kgraft-patch-4_4_180-94_116-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_31-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information kernel-default-4.4.180-94.127 is installed OR kernel-default-base-4.4.180-94.127 is installed OR kernel-default-devel-4.4.180-94.127 is installed OR kernel-default-kgraft-4.4.180-94.127 is installed OR kernel-devel-4.4.180-94.127 is installed OR kernel-macros-4.4.180-94.127 is installed OR kernel-source-4.4.180-94.127 is installed OR kernel-syms-4.4.180-94.127 is installed OR kgraft-patch-4_4_180-94_127-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_34-1-4.3 is installed
BACK