OVAL Reference oval:org.opensuse.security:def:64694

Oval Definition:

oval:org.opensuse.security:def:64694

Revision Date:	2021-05-26	Version:	1
Title:	Security update for curl (Moderate)
Description:	This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Allow partial chain verification [jsc#SLE-17956] * Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA certificates are. This allows users to verify servers using the intermediate cert only, instead of needing the whole chain. * Set FLAG_TRUSTED_FIRST unconditionally. * Do not check partial chains with CRL check.
Family:	unix	Class:	patch
Status:		Reference(s):	1140709 1152987 1153095 1153259 1155784 1158696 1159342 1159692 1174662 1177201 1178171 1186114 945190 CVE-2013-6418 CVE-2014-3577 CVE-2015-5262 CVE-2017-5838 CVE-2017-5847 CVE-2019-12838 CVE-2019-16328 CVE-2019-16779 CVE-2019-19727 CVE-2019-19728 CVE-2020-28049 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 CVE-2021-22898 openSUSE-SU-2020:0036-1 openSUSE-SU-2020:0085-1 openSUSE-SU-2020:0685-1 openSUSE-SU-2020:1275-1 openSUSE-SU-2020:1870-1 openSUSE-SU-2020:1875-1 SUSE-SU-2021:1762-1
Platform(s):	openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2	Product(s):
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information ruby2.5-rubygem-excon-0.59.0-lp151.3.3 is installed OR ruby2.5-rubygem-excon-doc-0.59.0-lp151.3.3 is installed OR ruby2.5-rubygem-excon-testsuite-0.59.0-lp151.3.3 is installed OR rubygem-excon-0.59.0-lp151.3.3 is installed
Definition Synopsis
openSUSE Leap 15.2 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-lp152.2.4 is installed OR libjavascriptcoregtk-4_0-18-32bit-2.28.4-lp152.2.4 is installed OR libwebkit2gtk-4_0-37-2.28.4-lp152.2.4 is installed OR libwebkit2gtk-4_0-37-32bit-2.28.4-lp152.2.4 is installed OR libwebkit2gtk3-lang-2.28.4-lp152.2.4 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.4-lp152.2.4 is installed OR typelib-1_0-WebKit2-4_0-2.28.4-lp152.2.4 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-lp152.2.4 is installed OR webkit-jsc-4-2.28.4-lp152.2.4 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-lp152.2.4 is installed OR webkit2gtk3-2.28.4-lp152.2.4 is installed OR webkit2gtk3-devel-2.28.4-lp152.2.4 is installed OR webkit2gtk3-minibrowser-2.28.4-lp152.2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information curl-7.66.0-4.17.1 is installed OR libcurl-devel-7.66.0-4.17.1 is installed OR libcurl4-7.66.0-4.17.1 is installed OR libcurl4-32bit-7.66.0-4.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND python2-pywbem-0.11.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information gstreamer-plugins-ugly-1.12.5-1 is installed OR gstreamer-plugins-ugly-lang-1.12.5-1 is installed

BACK