Oval Definition:oval:org.opensuse.security:def:60380
Revision Date:2021-10-11Version:1
Title:Security update for curl (Moderate)
Description:

This update for curl fixes the following issues:



- CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).
Family:unixClass:patch
Status:Reference(s):1029907
1029908
1029909
1030296
1030297
1030298
1030584
1030585
1030588
1030589
1031590
1031593
1031595
1031638
1031644
1031656
1037052
1037057
1037061
1037066
1037273
1044891
1044897
1044901
1044909
1044925
1044927
1046856
1056450
1065643
1065689
1065693
1068640
1068643
1068887
1068888
1068950
1069176
1069202
1074741
1077745
1079103
1079741
1080556
1081527
1083528
1083532
1085784
1086608
1086784
1086786
1086788
1090997
1091015
1091365
1091368
1138459
1141853
1144903
1153108
1153158
1153161
1155094
1156323
1156324
1156326
1156328
1156329
1159913
1160305
1160398
1160498
1162224
1162367
1162687
1162689
1162691
1162825
1165631
1165894
1169511
1174955
1177155
1190373
1190374
CVE-2007-4772
CVE-2007-6600
CVE-2009-0793
CVE-2009-4034
CVE-2009-4136
CVE-2010-1169
CVE-2010-1170
CVE-2010-3430
CVE-2010-3431
CVE-2010-3433
CVE-2010-3853
CVE-2011-3148
CVE-2011-3149
CVE-2011-3200
CVE-2012-0866
CVE-2012-0867
CVE-2012-0868
CVE-2012-2143
CVE-2012-2655
CVE-2012-3488
CVE-2012-3489
CVE-2013-0255
CVE-2013-1899
CVE-2013-1900
CVE-2013-1901
CVE-2013-4276
CVE-2013-4758
CVE-2013-6370
CVE-2013-6371
CVE-2014-0060
CVE-2014-0061
CVE-2014-0062
CVE-2014-0063
CVE-2014-0064
CVE-2014-0065
CVE-2014-0066
CVE-2014-0067
CVE-2014-2583
CVE-2014-3634
CVE-2014-3683
CVE-2014-9939
CVE-2015-3165
CVE-2015-3166
CVE-2015-3167
CVE-2015-3238
CVE-2015-4000
CVE-2015-5288
CVE-2015-5289
CVE-2016-0766
CVE-2016-0773
CVE-2016-2193
CVE-2016-3065
CVE-2017-1000083
CVE-2017-14062
CVE-2017-15938
CVE-2017-15939
CVE-2017-15996
CVE-2017-16826
CVE-2017-16827
CVE-2017-16828
CVE-2017-16829
CVE-2017-16830
CVE-2017-16831
CVE-2017-16832
CVE-2017-6965
CVE-2017-6966
CVE-2017-6969
CVE-2017-7209
CVE-2017-7210
CVE-2017-7223
CVE-2017-7224
CVE-2017-7225
CVE-2017-7226
CVE-2017-7299
CVE-2017-7300
CVE-2017-7301
CVE-2017-7302
CVE-2017-7303
CVE-2017-7304
CVE-2017-7484
CVE-2017-7485
CVE-2017-7486
CVE-2017-8392
CVE-2017-8393
CVE-2017-8394
CVE-2017-8396
CVE-2017-8421
CVE-2017-9746
CVE-2017-9747
CVE-2017-9748
CVE-2017-9750
CVE-2017-9755
CVE-2017-9756
CVE-2018-10372
CVE-2018-10373
CVE-2018-10534
CVE-2018-10535
CVE-2018-20852
CVE-2018-6323
CVE-2018-6543
CVE-2018-6759
CVE-2018-6872
CVE-2018-7208
CVE-2018-7568
CVE-2018-7569
CVE-2018-7570
CVE-2018-7642
CVE-2018-7643
CVE-2018-8945
CVE-2019-10160
CVE-2019-10220
CVE-2019-12523
CVE-2019-12526
CVE-2019-12528
CVE-2019-17015
CVE-2019-17016
CVE-2019-17017
CVE-2019-17021
CVE-2019-17022
CVE-2019-17024
CVE-2019-17026
CVE-2019-17133
CVE-2019-18348
CVE-2019-18676
CVE-2019-18677
CVE-2019-18678
CVE-2019-18679
CVE-2019-5108
CVE-2019-9674
CVE-2020-15708
CVE-2020-1749
CVE-2020-25637
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-8449
CVE-2020-8450
CVE-2020-8492
CVE-2020-8517
CVE-2021-22946
CVE-2021-22947
SUSE-SU-2017:2390-1
SUSE-SU-2018:0878-1
SUSE-SU-2018:3207-1
SUSE-SU-2019:2091-1
SUSE-SU-2019:2829-1
SUSE-SU-2020:0068-1
SUSE-SU-2020:0661-1
SUSE-SU-2020:0854-1
SUSE-SU-2020:1686-1
SUSE-SU-2020:3095-1
SUSE-SU-2021:3332-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-lp151.3.3 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-lp151.3.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-74.0.3729.157-lp151.2.3 is installed
  • OR chromium-74.0.3729.157-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libecpg6-9.6.3-2 is installed
  • OR libpq5-9.6.3-2 is installed
  • OR libpq5-32bit-9.6.3-2 is installed
  • OR postgresql96-9.6.3-2 is installed
  • OR postgresql96-contrib-9.6.3-2 is installed
  • OR postgresql96-docs-9.6.3-2 is installed
  • OR postgresql96-server-9.6.3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libvirt-3.3.0-5.46 is installed
  • OR libvirt-admin-3.3.0-5.46 is installed
  • OR libvirt-client-3.3.0-5.46 is installed
  • OR libvirt-daemon-3.3.0-5.46 is installed
  • OR libvirt-daemon-config-network-3.3.0-5.46 is installed
  • OR libvirt-daemon-config-nwfilter-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-interface-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-libxl-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-lxc-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-network-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-nodedev-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-nwfilter-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-qemu-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-secret-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-core-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-disk-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-logical-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-mpath-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-rbd-3.3.0-5.46 is installed
  • OR libvirt-daemon-driver-storage-scsi-3.3.0-5.46 is installed
  • OR libvirt-daemon-hooks-3.3.0-5.46 is installed
  • OR libvirt-daemon-lxc-3.3.0-5.46 is installed
  • OR libvirt-daemon-qemu-3.3.0-5.46 is installed
  • OR libvirt-daemon-xen-3.3.0-5.46 is installed
  • OR libvirt-doc-3.3.0-5.46 is installed
  • OR libvirt-libs-3.3.0-5.46 is installed
  • OR libvirt-lock-sanlock-3.3.0-5.46 is installed
  • OR libvirt-nss-3.3.0-5.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • glib2-2.48.2-12.15 is installed
  • OR glib2-lang-2.48.2-12.15 is installed
  • OR glib2-tools-2.48.2-12.15 is installed
  • OR libgio-2_0-0-2.48.2-12.15 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libglib-2_0-0-2.48.2-12.15 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_64-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_20-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • openslp-2.0.0-18.17 is installed
  • OR openslp-32bit-2.0.0-18.17 is installed
  • OR openslp-server-2.0.0-18.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-1 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • curl-7.60.0-11.28.1 is installed
  • OR libcurl4-7.60.0-11.28.1 is installed
  • OR libcurl4-32bit-7.60.0-11.28.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND
  • curl-7.60.0-11.28.1 is installed
  • OR libcurl4-7.60.0-11.28.1 is installed
  • OR libcurl4-32bit-7.60.0-11.28.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • ardana-ansible-9.0+git.1568821007.4e73730-3.13 is installed
  • OR ardana-horizon-9.0+git.1569869028.8edfc22-3.10 is installed
  • OR ardana-keystone-9.0+git.1570035317.78077ac-3.10 is installed
  • OR ardana-manila-9.0+git.1569444107.add6a40-3.9 is installed
  • OR ardana-neutron-9.0+git.1571328680.3a89cb8-3.13 is installed
  • OR grafana-6.2.5-3.9 is installed
  • OR openstack-cinder-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-api-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-backup-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-scheduler-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-volume-13.0.8~dev8-3.13 is installed
  • OR openstack-dashboard-14.0.5~dev1-3.9 is installed
  • OR openstack-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed
  • OR openstack-keystone-14.1.1~dev26-3.13 is installed
  • OR openstack-manila-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-api-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-data-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-scheduler-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-share-7.3.1~dev15-4.13 is installed
  • OR openstack-neutron-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-fwaas-13.0.3~dev2-3.6 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev15-3.10 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev15-3.10 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-server-13.0.6~dev3-3.13 is installed
  • OR openstack-nova-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-api-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-cells-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-compute-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-conductor-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-console-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-placement-api-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-scheduler-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev18-3.13 is installed
  • OR openstack-octavia-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-amphora-image-0.1.1-7.3 is installed
  • OR openstack-octavia-amphora-image-x86_64-0.1.1-7.3 is installed
  • OR openstack-octavia-api-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-worker-3.2.1~dev1-3.13 is installed
  • OR pdns-4.1.8-3.3 is installed
  • OR pdns-backend-mysql-4.1.8-3.3 is installed
  • OR python-Django1-1.11.24-3.12 is installed
  • OR python-cinder-13.0.8~dev8-3.13 is installed
  • OR python-horizon-14.0.5~dev1-3.9 is installed
  • OR python-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed
  • OR python-keystone-14.1.1~dev26-3.13 is installed
  • OR python-keystonemiddleware-5.2.1-11 is installed
  • OR python-manila-7.3.1~dev15-4.13 is installed
  • OR python-neutron-13.0.6~dev3-3.13 is installed
  • OR python-neutron-fwaas-13.0.3~dev2-3.6 is installed
  • OR python-neutron-lbaas-13.0.1~dev15-3.10 is installed
  • OR python-nova-18.2.4~dev18-3.13 is installed
  • OR python-octavia-3.2.1~dev1-3.13 is installed
  • OR python-octaviaclient-1.6.1-3.3 is installed
  • OR python-openstack_auth-14.0.5~dev1-3.9 is installed
  • OR python-os-brick-2.5.8-3.6 is installed
  • OR python-os-brick-common-2.5.8-3.6 is installed
  • OR python-oslo.cache-1.30.4-3.3 is installed
  • OR python-oslo.messaging-8.1.4-3.3 is installed
  • OR venv-openstack-barbican-7.0.1~dev18-3.11 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.11 is installed
  • OR venv-openstack-cinder-13.0.8~dev8-3.11 is installed
  • OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.11 is installed
  • OR venv-openstack-designate-7.0.1~dev22-3.11 is installed
  • OR venv-openstack-designate-x86_64-7.0.1~dev22-3.11 is installed
  • OR venv-openstack-glance-17.0.1~dev30-3.11 is installed
  • OR venv-openstack-glance-x86_64-17.0.1~dev30-3.11 is installed
  • OR venv-openstack-heat-11.0.3~dev23-3.11 is installed
  • OR venv-openstack-heat-x86_64-11.0.3~dev23-3.11 is installed
  • OR venv-openstack-horizon-14.0.5~dev1-4.11 is installed
  • OR venv-openstack-horizon-x86_64-14.0.5~dev1-4.11 is installed
  • OR venv-openstack-keystone-14.1.1~dev26-3.11 is installed
  • OR venv-openstack-keystone-x86_64-14.1.1~dev26-3.11 is installed
  • OR venv-openstack-magnum-7.1.1~dev28-4.11 is installed
  • OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.11 is installed
  • OR venv-openstack-manila-7.3.1~dev15-3.11 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev15-3.11 is installed
  • OR venv-openstack-monasca-2.7.1~dev10-3.11 is installed
  • OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.11 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.11 is installed
  • OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.11 is installed
  • OR venv-openstack-neutron-13.0.6~dev3-6.11 is installed
  • OR venv-openstack-neutron-x86_64-13.0.6~dev3-6.11 is installed
  • OR venv-openstack-nova-18.2.4~dev18-3.11 is installed
  • OR venv-openstack-nova-x86_64-18.2.4~dev18-3.11 is installed
  • OR venv-openstack-octavia-3.2.1~dev1-4.11 is installed
  • OR venv-openstack-octavia-x86_64-3.2.1~dev1-4.11 is installed
  • OR venv-openstack-sahara-9.0.2~dev12-3.11 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev12-3.11 is installed
  • OR venv-openstack-swift-2.19.2~dev1-2.8 is installed
  • OR venv-openstack-swift-x86_64-2.19.2~dev1-2.8 is installed
    • BACK