| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for curl (Important) |
| Description: |
This update for curl fixes the following issues:
- CVE-2020-8177: Fixed an issue where curl could have been tricked by a malicious server to overwrite a local file when using the -J option (bsc#1173027).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1002573
1012382
1023175
1026236
1027519
1035231
1045315
1046637
1049423
1049578
1051787
1051788
1051789
1052449
1052686
1055695
1056134
1069702
1070805
1076503
1076832
1082858
1082943
1083915
1087813
1093158
1102851
1107829
1114763
1116841
1117186
1118152
1118319
1118987
1119019
1119714
1119946
1120260
1120386
1120743
1120758
1121571
1121805
1121816
1121818
1121821
1124728
1124732
1124735
1127820
1127821
1127822
1128166
1129080
1129179
1131233
1131237
1131239
1131241
1131245
1133147
1137325
1145929
1149591
1150003
1150250
1154118
1154844
1155689
1156146
1157155
1157157
1157303
1157804
1158021
1158642
1158819
1159199
1159285
1159297
1159819
1159841
1159908
1159910
1159911
1159912
1160195
1161586
1162197
1162200
1162227
1162928
1162929
1162931
1163508
1163971
1164009
1164051
1164069
1164078
1164846
1165111
1165311
1165873
1165881
1165984
1165985
1167421
1167423
1167629
1168075
1168295
1168424
1168669
1168829
1168854
1169746
1170056
1170345
1170778
1170847
1170908
1171477
1171930
1171978
1173022
1173027
1174543
1176496
1176764
1178387
CVE-2012-6706
CVE-2013-7490
CVE-2017-10664
CVE-2017-11423
CVE-2017-11434
CVE-2017-12135
CVE-2017-12136
CVE-2017-12137
CVE-2017-12855
CVE-2017-16939
CVE-2017-18255
CVE-2017-18344
CVE-2017-6419
CVE-2018-0202
CVE-2018-1000085
CVE-2018-1120
CVE-2018-11805
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-12178
CVE-2018-12180
CVE-2018-14633
CVE-2018-16862
CVE-2018-16884
CVE-2018-19407
CVE-2018-19824
CVE-2018-19985
CVE-2018-20169
CVE-2018-20685
CVE-2018-21008
CVE-2018-3630
CVE-2018-5764
CVE-2018-6003
CVE-2018-9568
CVE-2019-0196
CVE-2019-0197
CVE-2019-0211
CVE-2019-0217
CVE-2019-0220
CVE-2019-11091
CVE-2019-14615
CVE-2019-14818
CVE-2019-14896
CVE-2019-14897
CVE-2019-1547
CVE-2019-1563
CVE-2019-17006
CVE-2019-18675
CVE-2019-19066
CVE-2019-19319
CVE-2019-19447
CVE-2019-19767
CVE-2019-19768
CVE-2019-19965
CVE-2019-19966
CVE-2019-20054
CVE-2019-20096
CVE-2019-2024
CVE-2019-20919
CVE-2019-3459
CVE-2019-3460
CVE-2019-3701
CVE-2019-5108
CVE-2019-6109
CVE-2019-6110
CVE-2019-6111
CVE-2019-6974
CVE-2019-7221
CVE-2019-7222
CVE-2019-9213
CVE-2019-9455
CVE-2019-9458
CVE-2020-10690
CVE-2020-10720
CVE-2020-10722
CVE-2020-10942
CVE-2020-11494
CVE-2020-11608
CVE-2020-11609
CVE-2020-12399
CVE-2020-12402
CVE-2020-1930
CVE-2020-1931
CVE-2020-25692
CVE-2020-2732
CVE-2020-8177
CVE-2020-8647
CVE-2020-8648
CVE-2020-8649
CVE-2020-8992
CVE-2020-9383
SUSE-SU-2017:2327-2
SUSE-SU-2018:0174-1
SUSE-SU-2018:0295-1
SUSE-SU-2018:0809-1
SUSE-SU-2019:2413-1
SUSE-SU-2020:0810-1
SUSE-SU-2020:1275-1
SUSE-SU-2020:1732-1
SUSE-SU-2020:2194-1
SUSE-SU-2020:2856-1
SUSE-SU-2020:3314-1
|
| Platform(s): | openSUSE Leap 15.1
openSUSE Leap 15.2
openSUSE Leap 15.2 NonFree
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.1 is installed AND Package Information
containerd-1.2.6-lp151.2.6 is installed
OR containerd-ctr-1.2.6-lp151.2.6 is installed
OR docker-19.03.1_ce-lp151.2.12 is installed
OR docker-bash-completion-19.03.1_ce-lp151.2.12 is installed
OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-lp151.2.6 is installed
OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.6 is installed
OR docker-test-19.03.1_ce-lp151.2.12 is installed
OR docker-zsh-completion-19.03.1_ce-lp151.2.12 is installed
OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-lp151.2.6 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.2 is installed
AND Package Information
chromedriver-84.0.4147.89-lp152.2.6 is installed
OR chromium-84.0.4147.89-lp152.2.6 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.2 NonFree is installed
AND opera-70.0.3728.71-lp152.2.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
xen-4.9.0_11-3.9 is installed
OR xen-doc-html-4.9.0_11-3.9 is installed
OR xen-libs-4.9.0_11-3.9 is installed
OR xen-libs-32bit-4.9.0_11-3.9 is installed
OR xen-tools-4.9.0_11-3.9 is installed
OR xen-tools-domU-4.9.0_11-3.9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
libopenssl-devel-1.0.2j-60.55 is installed
OR libopenssl1_0_0-1.0.2j-60.55 is installed
OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
OR openssl-1.0.2j-60.55 is installed
OR openssl-doc-1.0.2j-60.55 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND Package Information
libfreebl3-3.53.1-58.48 is installed
OR libfreebl3-32bit-3.53.1-58.48 is installed
OR libfreebl3-hmac-3.53.1-58.48 is installed
OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed
OR libsoftokn3-3.53.1-58.48 is installed
OR libsoftokn3-32bit-3.53.1-58.48 is installed
OR libsoftokn3-hmac-3.53.1-58.48 is installed
OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed
OR mozilla-nspr-4.25-19.15 is installed
OR mozilla-nspr-32bit-4.25-19.15 is installed
OR mozilla-nspr-devel-4.25-19.15 is installed
OR mozilla-nss-3.53.1-58.48 is installed
OR mozilla-nss-32bit-3.53.1-58.48 is installed
OR mozilla-nss-certs-3.53.1-58.48 is installed
OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed
OR mozilla-nss-devel-3.53.1-58.48 is installed
OR mozilla-nss-sysinit-3.53.1-58.48 is installed
OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed
OR mozilla-nss-tools-3.53.1-58.48 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
kernel-default-4.4.180-94.116 is installed
OR kernel-default-base-4.4.180-94.116 is installed
OR kernel-default-devel-4.4.180-94.116 is installed
OR kernel-default-kgraft-4.4.180-94.116 is installed
OR kernel-default-man-4.4.180-94.116 is installed
OR kernel-devel-4.4.180-94.116 is installed
OR kernel-macros-4.4.180-94.116 is installed
OR kernel-source-4.4.180-94.116 is installed
OR kernel-syms-4.4.180-94.116 is installed
OR kgraft-patch-4_4_180-94_116-default-1-4.3 is installed
OR kgraft-patch-SLE12-SP3_Update_31-1-4.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
openssh-7.2p2-74.35 is installed
OR openssh-askpass-gnome-7.2p2-74.35 is installed
OR openssh-fips-7.2p2-74.35 is installed
OR openssh-helpers-7.2p2-74.35 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND chrony-2.3-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
AND Package Information
MozillaFirefox-78.1.0-112.8 is installed
OR MozillaFirefox-devel-78.1.0-112.8 is installed
OR MozillaFirefox-translations-common-78.1.0-112.8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4-LTSS is installed
AND Package Information
LibVNCServer-0.9.9-17.31 is installed
OR libvncclient0-0.9.9-17.31 is installed
OR libvncserver0-0.9.9-17.31 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 9 is installed
AND Package Information
libfreebl3-3.53.1-58.48 is installed
OR libfreebl3-32bit-3.53.1-58.48 is installed
OR libfreebl3-hmac-3.53.1-58.48 is installed
OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed
OR libsoftokn3-3.53.1-58.48 is installed
OR libsoftokn3-32bit-3.53.1-58.48 is installed
OR libsoftokn3-hmac-3.53.1-58.48 is installed
OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed
OR mozilla-nspr-4.25-19.15 is installed
OR mozilla-nspr-32bit-4.25-19.15 is installed
OR mozilla-nspr-devel-4.25-19.15 is installed
OR mozilla-nss-3.53.1-58.48 is installed
OR mozilla-nss-32bit-3.53.1-58.48 is installed
OR mozilla-nss-certs-3.53.1-58.48 is installed
OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed
OR mozilla-nss-devel-3.53.1-58.48 is installed
OR mozilla-nss-sysinit-3.53.1-58.48 is installed
OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed
OR mozilla-nss-tools-3.53.1-58.48 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud Crowbar 8 is installed
AND Package Information
curl-7.37.0-37.47 is installed
OR libcurl4-7.37.0-37.47 is installed
OR libcurl4-32bit-7.37.0-37.47 is installed
|