Oval Definition:
oval:org.opensuse.security:def:93062
Revision Date
:
2021-05-31
Version
:
1
Title
:
Security update for curl (Moderate)
Description
:
This update for curl fixes the following issues:
- CVE-2021-22876: Fixed an issue where the automatic referer was leaking credentials (bsc#1183933). - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Fix for SFTP uploads when it results in empty uploaded files (bsc#1177976). - Allow partial chain verification (jsc#SLE-17956).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1177976
1183933
1186114
CVE-2021-22876
CVE-2021-22898
SUSE-SU-2021:1809-1
Platform(s)
:
SUSE Manager Retail Branch Server 4.0
Product(s)
:
Definition Synopsis
SUSE Manager Retail Branch Server 4.0 is installed
AND
Package Information
curl-7.60.0-3.42.1 is installed
OR
libcurl-devel-7.60.0-3.42.1 is installed
OR
libcurl4-7.60.0-3.42.1 is installed
OR
libcurl4-32bit-7.60.0-3.42.1 is installed
BACK