Revision Date: | 2021-05-26 | Version: | 1 |
Title: | Security update for curl (Moderate) |
Description: |
This update for curl fixes the following issues:
- CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Allow partial chain verification [jsc#SLE-17956] * Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA certificates are. This allows users to verify servers using the intermediate cert only, instead of needing the whole chain. * Set FLAG_TRUSTED_FIRST unconditionally. * Do not check partial chains with CRL check.
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1140709 1152987 1153095 1153259 1155784 1158696 1159342 1159692 1174662 1177201 1178171 1186114 945190 CVE-2013-6418 CVE-2014-3577 CVE-2015-5262 CVE-2017-5838 CVE-2017-5847 CVE-2019-12838 CVE-2019-16328 CVE-2019-16779 CVE-2019-19727 CVE-2019-19728 CVE-2020-28049 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 CVE-2021-22898 openSUSE-SU-2020:0036-1 openSUSE-SU-2020:0085-1 openSUSE-SU-2020:0685-1 openSUSE-SU-2020:1275-1 openSUSE-SU-2020:1870-1 openSUSE-SU-2020:1875-1 SUSE-SU-2021:1762-1
|
Platform(s): | openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2
| Product(s): | |
Definition Synopsis |
openSUSE Leap 15.1 is installed AND Package Information
ruby2.5-rubygem-excon-0.59.0-lp151.3.3 is installed
OR ruby2.5-rubygem-excon-doc-0.59.0-lp151.3.3 is installed
OR ruby2.5-rubygem-excon-testsuite-0.59.0-lp151.3.3 is installed
OR rubygem-excon-0.59.0-lp151.3.3 is installed
|
Definition Synopsis |
openSUSE Leap 15.2 is installed
AND Package Information
libjavascriptcoregtk-4_0-18-2.28.4-lp152.2.4 is installed
OR libjavascriptcoregtk-4_0-18-32bit-2.28.4-lp152.2.4 is installed
OR libwebkit2gtk-4_0-37-2.28.4-lp152.2.4 is installed
OR libwebkit2gtk-4_0-37-32bit-2.28.4-lp152.2.4 is installed
OR libwebkit2gtk3-lang-2.28.4-lp152.2.4 is installed
OR typelib-1_0-JavaScriptCore-4_0-2.28.4-lp152.2.4 is installed
OR typelib-1_0-WebKit2-4_0-2.28.4-lp152.2.4 is installed
OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-lp152.2.4 is installed
OR webkit-jsc-4-2.28.4-lp152.2.4 is installed
OR webkit2gtk-4_0-injected-bundles-2.28.4-lp152.2.4 is installed
OR webkit2gtk3-2.28.4-lp152.2.4 is installed
OR webkit2gtk3-devel-2.28.4-lp152.2.4 is installed
OR webkit2gtk3-minibrowser-2.28.4-lp152.2.4 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
AND Package Information
curl-7.66.0-4.17.1 is installed
OR libcurl-devel-7.66.0-4.17.1 is installed
OR libcurl4-7.66.0-4.17.1 is installed
OR libcurl4-32bit-7.66.0-4.17.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
AND python2-pywbem-0.11.0-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
gstreamer-plugins-ugly-1.12.5-1 is installed
OR gstreamer-plugins-ugly-lang-1.12.5-1 is installed
|