| Revision Date: | 2018-03-22 | Version: | 1 |
| Title: | Security update for curl (Moderate) |
| Description: |
This update for curl fixes the following issues:
Following security issues were fixed:
- CVE-2018-1000120: A buffer overflow exists in the FTP URL handling that allowed an attacker to cause a denial of service or possible code execution (bsc#1084521). - CVE-2018-1000121: A NULL pointer dereference exists in the LDAP code that allowed an attacker to cause a denial of service (bsc#1084524). - CVE-2018-1000122: A buffer over-read exists in the RTSP+RTP handling code that allowed an attacker to cause a denial of service or information leakage (bsc#1084532).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1084521
1084524
1084532
CVE-2018-1000120
CVE-2018-1000121
CVE-2018-1000122
SUSE-SU-2018:0769-1
|
| Platform(s): | SUSE Linux Enterprise Server 12 SP2
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information
curl-7.37.0-37.17.1 is installed
OR libcurl4-7.37.0-37.17.1 is installed
OR libcurl4-32bit-7.37.0-37.17.1 is installed
|