OVAL Reference oval:org.opensuse.security:def:69545

Oval Definition:

oval:org.opensuse.security:def:69545

Revision Date:	2021-10-06	Version:	1
Title:	Security update for curl (Moderate)
Description:	This update for curl fixes the following issues: - CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).
Family:	unix	Class:	patch
Status:		Reference(s):	1172686 1173937 1174321 1176589 1190373 1190374 CVE-2020-15095 CVE-2020-15103 CVE-2020-8252 CVE-2021-22946 CVE-2021-22947 SUSE-SU-2020:2409-1 SUSE-SU-2020:2829-1 SUSE-SU-2021:3297-1
Platform(s):	SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.22.1-1.27 is installed OR nodejs10-devel-10.22.1-1.27 is installed OR nodejs10-docs-10.22.1-1.27 is installed OR npm10-10.22.1-1.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information curl-7.60.0-25.1 is installed OR libcurl-devel-7.60.0-25.1 is installed OR libcurl4-7.60.0-25.1 is installed OR libcurl4-32bit-7.60.0-25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information freerdp-2.1.2-10.18 is installed OR freerdp-devel-2.1.2-10.18 is installed OR libfreerdp2-2.1.2-10.18 is installed OR libwinpr2-2.1.2-10.18 is installed OR winpr2-devel-2.1.2-10.18 is installed

BACK