Oval Definition:	oval:org.opensuse.security:def:73566
Revision Date: 2020-12-09 Version: 1 Title: Security update for curl (Moderate) Description: This update for curl fixes the following issues: - CVE-2020-8286: Fixed improper OSCP verification in the client side (bsc#1179593). - CVE-2020-8285: Fixed a stack overflow due to FTP wildcard (bsc#1179399). - CVE-2020-8284: Fixed an issue where a malicius FTP server could make curl connect to a different IP (bsc#1179398). Family: unix Class: patch Status: Reference(s): 1027519 1172205 1173376 1173377 1173378 1173380 1179398 1179399 1179593 CVE-2019-11023 CVE-2020-0543 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-8284 CVE-2020-8285 CVE-2020-8286 SUSE-SU-2020:1902-1 SUSE-SU-2020:3735-1 Platform(s): SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information curl-7.66.0-4.11.1 is installed OR libcurl-devel-7.66.0-4.11.1 is installed OR libcurl4-7.66.0-4.11.1 is installed OR libcurl4-32bit-7.66.0-4.11.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information xen-4.13.1_04-3.4 is installed OR xen-libs-4.13.1_04-3.4 is installed OR xen-tools-domU-4.13.1_04-3.4 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND graphviz-tcl-2.40.1-6.3 is installed
BACK