OVAL Reference oval:org.opensuse.security:def:60263

Oval Definition:

oval:org.opensuse.security:def:60263

Revision Date:	2021-05-26	Version:	1
Title:	Security update for curl (Moderate)
Description:	This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Allow partial chain verification [jsc#SLE-17956] * Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA certificates are. This allows users to verify servers using the intermediate cert only, instead of needing the whole chain. * Set FLAG_TRUSTED_FIRST unconditionally. * Do not check partial chains with CRL check.
Family:	unix	Class:	patch
Status:		Reference(s):	1025046 1051510 1084878 1085790 1091836 1112767 1117665 1122198 1122475 1127027 1131107 1132045 1133140 1135966 1135967 1136261 1137865 1139073 1140671 1141013 1141054 1142458 1143187 1144123 1144903 1145477 1146042 1146163 1146285 1146361 1146378 1146391 1146413 1146425 1146512 1146514 1146516 1146519 1146524 1146526 1146529 1146540 1146543 1146547 1146550 1146584 1146589 1147022 1147122 1148394 1148938 1149083 1149376 1149522 1149527 1149555 1149612 1150025 1150112 1150452 1150457 1150465 1150727 1150942 1151347 1151350 1152685 1152782 1152788 1153158 1153263 1154103 1154372 1155131 1155419 1155671 1160471 1160968 1169511 1170170 1170441 1171352 1172140 1172277 1172437 1174157 1175259 1186114 CVE-2002-2443 CVE-2007-4129 CVE-2007-4772 CVE-2007-6600 CVE-2009-0844 CVE-2009-0845 CVE-2009-0846 CVE-2009-0847 CVE-2009-1273 CVE-2009-3295 CVE-2009-4034 CVE-2009-4136 CVE-2009-4212 CVE-2010-0283 CVE-2010-0628 CVE-2010-1169 CVE-2010-1170 CVE-2010-1320 CVE-2010-1321 CVE-2010-1322 CVE-2010-1323 CVE-2010-1324 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2010-2800 CVE-2010-2801 CVE-2010-3433 CVE-2010-4020 CVE-2010-4021 CVE-2010-4022 CVE-2011-0281 CVE-2011-0282 CVE-2011-0284 CVE-2011-0285 CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 CVE-2011-1530 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 CVE-2012-1012 CVE-2012-1013 CVE-2012-1016 CVE-2012-2143 CVE-2012-2655 CVE-2012-3488 CVE-2012-3489 CVE-2013-0255 CVE-2013-1415 CVE-2013-1417 CVE-2013-1418 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-0067 CVE-2014-4341 CVE-2014-4342 CVE-2014-4343 CVE-2014-4344 CVE-2014-4345 CVE-2014-5351 CVE-2014-5352 CVE-2014-5353 CVE-2014-5354 CVE-2014-5355 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423 CVE-2014-9556 CVE-2014-9732 CVE-2015-2694 CVE-2015-2695 CVE-2015-2696 CVE-2015-2697 CVE-2015-2698 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-4467 CVE-2015-4468 CVE-2015-4469 CVE-2015-4470 CVE-2015-4471 CVE-2015-4472 CVE-2015-5288 CVE-2015-5289 CVE-2015-8629 CVE-2015-8630 CVE-2015-8631 CVE-2016-0766 CVE-2016-0773 CVE-2016-10906 CVE-2016-2193 CVE-2016-3065 CVE-2016-3119 CVE-2016-3120 CVE-2017-10989 CVE-2017-18379 CVE-2017-18509 CVE-2017-18551 CVE-2017-18595 CVE-2017-2625 CVE-2017-7484 CVE-2017-7485 CVE-2017-7486 CVE-2018-12207 CVE-2018-20976 CVE-2018-8740 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-13272 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14821 CVE-2019-14835 CVE-2019-15098 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15239 CVE-2019-15290 CVE-2019-15291 CVE-2019-15505 CVE-2019-15666 CVE-2019-15681 CVE-2019-15690 CVE-2019-15807 CVE-2019-15902 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16413 CVE-2019-16995 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17639 CVE-2019-17666 CVE-2019-20788 CVE-2019-2510 CVE-2019-2537 CVE-2019-2949 CVE-2019-9456 CVE-2019-9506 CVE-2020-10757 CVE-2020-12059 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2021-22898 SUSE-SU-2018:0338-1 SUSE-SU-2018:1661-1 SUSE-SU-2019:1162-1 SUSE-SU-2019:1208-1 SUSE-SU-2019:2949-1 SUSE-SU-2020:1158-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:1685-1 SUSE-SU-2020:1784-1 SUSE-SU-2020:2461-1 SUSE-SU-2021:1763-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information dbus-1-1.12.2-lp150.2.3 is installed OR dbus-1-devel-1.12.2-lp150.2.3 is installed OR dbus-1-devel-32bit-1.12.2-lp150.2.3 is installed OR dbus-1-devel-doc-1.12.2-lp150.2.3 is installed OR dbus-1-x11-1.12.2-lp150.2.3 is installed OR libdbus-1-3-1.12.2-lp150.2.3 is installed OR libdbus-1-3-32bit-1.12.2-lp150.2.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libblkid-devel-2.33.1-lp151.3.3 is installed OR libblkid-devel-32bit-2.33.1-lp151.3.3 is installed OR libblkid-devel-static-2.33.1-lp151.3.3 is installed OR libblkid1-2.33.1-lp151.3.3 is installed OR libblkid1-32bit-2.33.1-lp151.3.3 is installed OR libfdisk-devel-2.33.1-lp151.3.3 is installed OR libfdisk-devel-static-2.33.1-lp151.3.3 is installed OR libfdisk1-2.33.1-lp151.3.3 is installed OR libmount-devel-2.33.1-lp151.3.3 is installed OR libmount-devel-32bit-2.33.1-lp151.3.3 is installed OR libmount-devel-static-2.33.1-lp151.3.3 is installed OR libmount1-2.33.1-lp151.3.3 is installed OR libmount1-32bit-2.33.1-lp151.3.3 is installed OR libsmartcols-devel-2.33.1-lp151.3.3 is installed OR libsmartcols-devel-static-2.33.1-lp151.3.3 is installed OR libsmartcols1-2.33.1-lp151.3.3 is installed OR libuuid-devel-2.33.1-lp151.3.3 is installed OR libuuid-devel-32bit-2.33.1-lp151.3.3 is installed OR libuuid-devel-static-2.33.1-lp151.3.3 is installed OR libuuid1-2.33.1-lp151.3.3 is installed OR libuuid1-32bit-2.33.1-lp151.3.3 is installed OR python3-libmount-2.33.1-lp151.3.3 is installed OR shadow-4.6-lp151.2.3 is installed OR util-linux-2.33.1-lp151.3.3 is installed OR util-linux-lang-2.33.1-lp151.3.3 is installed OR util-linux-systemd-2.33.1-lp151.3.3 is installed OR uuidd-2.33.1-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND coolkey-1.1.0-147 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtiff5-4.0.9-44.30 is installed OR libtiff5-32bit-4.0.9-44.30 is installed OR tiff-4.0.9-44.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND mailman-2.1.17-3.23 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND curl-7.60.0-11.18.1 is installed OR libcurl4-7.60.0-11.18.1 is installed OR libcurl4-32bit-7.60.0-11.18.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND curl-7.60.0-11.18.1 is installed OR libcurl4-7.60.0-11.18.1 is installed OR libcurl4-32bit-7.60.0-11.18.1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND mailman-2.1.17-3.23 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-30.72 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information grub2-2.02-12.39 is installed OR grub2-i386-pc-2.02-12.39 is installed OR grub2-snapper-plugin-2.02-12.39 is installed OR grub2-systemd-sleep-plugin-2.02-12.39 is installed OR grub2-x86_64-efi-2.02-12.39 is installed OR grub2-x86_64-xen-2.02-12.39 is installed

BACK