Oval Definition:
oval:org.opensuse.security:def:66939
Revision Date
:
2021-10-06
Version
:
1
Title
:
Security update for curl (Moderate)
Description
:
This update for curl fixes the following issues:
- CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1175568
1190373
1190374
CVE-2010-2494
CVE-2012-5468
CVE-2020-8027
CVE-2021-22946
CVE-2021-22947
SUSE-SU-2020:2712-1
Platform(s)
:
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Workstation Extension 15 SP2
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
AND
Package Information
libldap-2_4-2-2.4.46-9.37 is installed
OR
libldap-2_4-2-32bit-2.4.46-9.37 is installed
OR
libldap-data-2.4.46-9.37 is installed
OR
openldap2-2.4.46-9.37 is installed
OR
openldap2-client-2.4.46-9.37 is installed
OR
openldap2-devel-2.4.46-9.37 is installed
OR
openldap2-devel-static-2.4.46-9.37 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
AND
Package Information
bogofilter-common-1.2.4-1 is installed
OR
bogofilter-db-1.2.4-1 is installed
BACK