Oval Definition:	oval:org.opensuse.security:def:73896
Revision Date: 2021-10-06 Version: 1 Title: Security update for curl (Moderate) Description: This update for curl fixes the following issues: - CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373). Family: unix Class: patch Status: Reference(s): 1160790 1161088 1161089 1161670 1172175 1172176 1190373 1190374 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2020-11076 CVE-2020-11077 CVE-2021-22946 CVE-2021-22947 SUSE-SU-2021:3298-1 Platform(s): SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information ruby2.5-rubygem-puma-doc-4.3.5-3.3 is installed OR rubygem-puma-4.3.5-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information curl-7.66.0-4.27.1 is installed OR libcurl-devel-7.66.0-4.27.1 is installed OR libcurl4-7.66.0-4.27.1 is installed OR libcurl4-32bit-7.66.0-4.27.1 is installed
BACK