Oval Definition:	oval:org.opensuse.security:def:64583
Revision Date: 2021-10-06 Version: 1 Title: Security update for curl (Moderate) Description: This update for curl fixes the following issues: - CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373). Family: unix Class: patch Status: Reference(s): 1093733 1094301 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1106514 1111647 1117740 1121231 1121232 1121233 1121234 1121235 1127367 1127369 1127370 1131941 1131945 1136021 1141980 1150690 1151585 1156288 1158505 1161052 1165241 1165710 1168422 1169428 1173026 1173027 1174230 1174922 1174923 1175505 1176384 1176756 1176899 1177977 1190373 1190374 957624 CVE-2016-2399 CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-12086 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-18225 CVE-2018-18226 CVE-2018-18227 CVE-2018-19211 CVE-2018-19622 CVE-2018-19623 CVE-2018-19624 CVE-2018-19625 CVE-2018-19626 CVE-2018-19627 CVE-2018-19628 CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10897 CVE-2019-10898 CVE-2019-10899 CVE-2019-10900 CVE-2019-10901 CVE-2019-10902 CVE-2019-10903 CVE-2019-13619 CVE-2019-16319 CVE-2019-16680 CVE-2019-19553 CVE-2019-5716 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 CVE-2019-9208 CVE-2019-9209 CVE-2019-9214 CVE-2020-11736 CVE-2020-12673 CVE-2020-12674 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-15683 CVE-2020-15969 CVE-2020-3898 CVE-2020-6556 CVE-2020-7044 CVE-2020-8169 CVE-2020-8177 CVE-2020-9428 CVE-2020-9429 CVE-2020-9430 CVE-2020-9431 CVE-2021-22946 CVE-2021-22947 openSUSE-SU-2020:0362-1 openSUSE-SU-2020:0555-1 openSUSE-SU-2020:0825-1 openSUSE-SU-2020:0883-1 openSUSE-SU-2020:1262-1 openSUSE-SU-2020:1263-1 openSUSE-SU-2020:1785-1 SUSE-SU-2021:3298-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information MozillaThunderbird-78.4.0-lp151.2.53 is installed OR MozillaThunderbird-translations-common-78.4.0-lp151.2.53 is installed OR MozillaThunderbird-translations-other-78.4.0-lp151.2.53 is installed OR mozilla-nspr-4.25.1-lp151.2.13 is installed OR mozilla-nspr-32bit-4.25.1-lp151.2.13 is installed OR mozilla-nspr-devel-4.25.1-lp151.2.13 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information dovecot23-2.3.10-lp152.2.3 is installed OR dovecot23-backend-mysql-2.3.10-lp152.2.3 is installed OR dovecot23-backend-pgsql-2.3.10-lp152.2.3 is installed OR dovecot23-backend-sqlite-2.3.10-lp152.2.3 is installed OR dovecot23-devel-2.3.10-lp152.2.3 is installed OR dovecot23-fts-2.3.10-lp152.2.3 is installed OR dovecot23-fts-lucene-2.3.10-lp152.2.3 is installed OR dovecot23-fts-solr-2.3.10-lp152.2.3 is installed OR dovecot23-fts-squat-2.3.10-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information curl-7.66.0-4.27.1 is installed OR libcurl-devel-7.66.0-4.27.1 is installed OR libcurl4-7.66.0-4.27.1 is installed OR libcurl4-32bit-7.66.0-4.27.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libquicktime-1.2.4cvs20150223-4 is installed OR libquicktime-devel-1.2.4cvs20150223-4 is installed OR libquicktime0-1.2.4cvs20150223-4 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information libncurses5-6.1-5.3 is installed OR libncurses5-32bit-6.1-5.3 is installed OR ncurses5-devel-6.1-5.3 is installed
BACK