Oval Definition:
oval:org.opensuse.security:def:99262
Revision Date
:
2021-05-31
Version
:
1
Title
:
Security update for curl (Moderate)
Description
:
This update for curl fixes the following issues:
- CVE-2021-22876: Fixed an issue where the automatic referer was leaking credentials (bsc#1183933). - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Fix for SFTP uploads when it results in empty uploaded files (bsc#1177976). - Allow partial chain verification (jsc#SLE-17956).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1177976
1183933
1186114
CVE-2021-22876
CVE-2021-22898
SUSE-SU-2021:1809-1
Platform(s)
:
SUSE Linux Enterprise Server 15 SP1-BCL
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Server 15 SP1-BCL is installed
AND
Package Information
curl-7.60.0-3.42.1 is installed
OR
libcurl-devel-7.60.0-3.42.1 is installed
OR
libcurl4-7.60.0-3.42.1 is installed
OR
libcurl4-32bit-7.60.0-3.42.1 is installed
BACK