Oval Definition:oval:org.opensuse.security:def:58560
Revision Date:2020-12-01Version:1
Title:Security update for curl (Moderate)
Description:

This update for curl fixes the following issues:

Security issues fixed:

- CVE-2017-1000254: FTP PWD response parser out of bounds read (bsc#1061876) - CVE-2017-1000257: IMAP FETCH response out of bounds read (bsc#1063824)

Bugs fixed:

- Fixed error 'error:1408F10B:SSL routines' when connecting to ftps via proxy (bsc#1060653)

Family:unixClass:patch
Status:Reference(s):1002626
1010457
1012546
1027038
1027519
1027593
1055478
1060427
1060653
1061876
1063008
1063824
1064232
1068032
1070737
1076110
1079152
1082023
1082962
1083635
1083650
1083900
1085042
1085185
1086039
1086400
1086652
1087007
1087012
1087036
1087081
1087086
1087095
1088268
1089152
1089343
1089635
1089895
1090036
1090123
1090534
1090820
1090822
1090823
1090955
1091171
1092497
1092552
1092813
1092904
1094033
1094248
1094353
1094823
1095042
1096130
1096140
1096242
1096281
1096480
1096728
1096978
1097140
1097356
1097551
1098016
1098425
1098435
1099924
1100089
1100416
1100418
1100491
1101557
1101820
1102340
1102851
1103097
1103098
1103119
1103580
1111498
1111657
1117025
1117382
1120658
1122000
1122344
1123333
1123892
1125352
1138748
1149792
1152497
1154448
1154456
1154458
1154461
1155945
1157888
1158003
1158004
1158005
1158006
1158007
1158785
1158787
1158788
1158789
1158790
1158791
1158792
1158793
1158795
1161181
1164692
1173948
1174538
920813
973378
981848
CVE-2015-0254
CVE-2016-1246
CVE-2016-1249
CVE-2016-1251
CVE-2016-2183
CVE-2017-0861
CVE-2017-1000254
CVE-2017-1000257
CVE-2017-13305
CVE-2017-14746
CVE-2017-15275
CVE-2017-18241
CVE-2017-18249
CVE-2017-18344
CVE-2017-5754
CVE-2018-1000199
CVE-2018-1000199
CVE-2018-1000204
CVE-2018-10471
CVE-2018-10472
CVE-2018-1065
CVE-2018-10903
CVE-2018-1092
CVE-2018-1093
CVE-2018-1094
CVE-2018-1130
CVE-2018-12207
CVE-2018-13053
CVE-2018-13405
CVE-2018-13406
CVE-2018-14734
CVE-2018-3620
CVE-2018-3646
CVE-2018-3665
CVE-2018-5390
CVE-2018-5391
CVE-2018-5803
CVE-2018-5814
CVE-2018-5848
CVE-2018-7492
CVE-2018-8897
CVE-2018-9385
CVE-2019-11135
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
CVE-2019-18420
CVE-2019-18421
CVE-2019-18424
CVE-2019-18425
CVE-2019-19577
CVE-2019-19578
CVE-2019-19579
CVE-2019-19580
CVE-2019-19581
CVE-2019-19583
CVE-2019-19604
CVE-2019-6454
CVE-2020-15652
CVE-2020-15653
CVE-2020-15654
CVE-2020-15655
CVE-2020-15656
CVE-2020-15657
CVE-2020-15658
CVE-2020-15659
CVE-2020-1938
CVE-2020-6463
CVE-2020-6514
CVE-2020-7211
SUSE-SU-2017:0123-1
SUSE-SU-2017:0720-1
SUSE-SU-2017:1568-1
SUSE-SU-2017:2831-1
SUSE-SU-2017:3086-1
SUSE-SU-2018:1256-1
SUSE-SU-2018:2344-1
SUSE-SU-2018:3230-1
SUSE-SU-2019:3311-1
SUSE-SU-2020:2100-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND enscript-1.6.6-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libecpg6-10.9-lp151.2.3 is installed
  • OR libecpg6-32bit-10.9-lp151.2.3 is installed
  • OR libpq5-10.9-lp151.2.3 is installed
  • OR libpq5-32bit-10.9-lp151.2.3 is installed
  • OR postgresql10-10.9-lp151.2.3 is installed
  • OR postgresql10-contrib-10.9-lp151.2.3 is installed
  • OR postgresql10-devel-10.9-lp151.2.3 is installed
  • OR postgresql10-docs-10.9-lp151.2.3 is installed
  • OR postgresql10-plperl-10.9-lp151.2.3 is installed
  • OR postgresql10-plpython-10.9-lp151.2.3 is installed
  • OR postgresql10-pltcl-10.9-lp151.2.3 is installed
  • OR postgresql10-server-10.9-lp151.2.3 is installed
  • OR postgresql10-test-10.9-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • curl-7.37.0-37.8 is installed
  • OR libcurl4-7.37.0-37.8 is installed
  • OR libcurl4-32bit-7.37.0-37.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.5_02-43.30 is installed
  • OR xen-doc-html-4.7.5_02-43.30 is installed
  • OR xen-libs-4.7.5_02-43.30 is installed
  • OR xen-libs-32bit-4.7.5_02-43.30 is installed
  • OR xen-tools-4.7.5_02-43.30 is installed
  • OR xen-tools-domU-4.7.5_02-43.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.92 is installed
  • OR kernel-default-base-4.4.121-92.92 is installed
  • OR kernel-default-devel-4.4.121-92.92 is installed
  • OR kernel-default-man-4.4.121-92.92 is installed
  • OR kernel-devel-4.4.121-92.92 is installed
  • OR kernel-macros-4.4.121-92.92 is installed
  • OR kernel-source-4.4.121-92.92 is installed
  • OR kernel-syms-4.4.121-92.92 is installed
  • OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed
  • OR lttng-modules-2.7.1-9.4 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • xen-4.9.4_10-3.71 is installed
  • OR xen-doc-html-4.9.4_10-3.71 is installed
  • OR xen-libs-4.9.4_10-3.71 is installed
  • OR xen-libs-32bit-4.9.4_10-3.71 is installed
  • OR xen-tools-4.9.4_10-3.71 is installed
  • OR xen-tools-domU-4.9.4_10-3.71 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • ghostscript-9.52-23.34 is installed
  • OR ghostscript-x11-9.52-23.34 is installed
  • OR libspectre-0.2.7-12.10 is installed
  • OR libspectre1-0.2.7-12.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • cups-filters-1.0.58-19.2 is installed
  • OR cups-filters-cups-browsed-1.0.58-19.2 is installed
  • OR cups-filters-foomatic-rip-1.0.58-19.2 is installed
  • OR cups-filters-ghostscript-1.0.58-19.2 is installed
  • OR libqpdf18-7.1.1-3.3 is installed
  • OR qpdf-7.1.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libcairo-gobject2-1.15.2-25.3 is installed
  • OR libcairo-gobject2-32bit-1.15.2-25.3 is installed
  • OR libcairo-script-interpreter2-1.15.2-25.3 is installed
  • OR libcairo2-1.15.2-25.3 is installed
  • OR libcairo2-32bit-1.15.2-25.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libruby2_1-2_1-2.1.9-19.3 is installed
  • OR ruby2.1-2.1.9-19.3 is installed
  • OR ruby2.1-stdlib-2.1.9-19.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • mariadb-10.2.25-3.19 is installed
  • OR mariadb-galera-10.2.25-3.19 is installed
    • BACK