Oval Definition:oval:org.opensuse.security:def:99682
Revision Date:2021-10-06Version:1
Title: (Moderate)
Description:

This update for curl fixes the following issues:

- CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).
Family:unixClass:patch
Status:Reference(s):1186617
1190373
1190374
CVE-2021-22946
CVE-2021-22947
CVE-2021-3567
SUSE-SU-2021:2007-1
Platform(s):Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE is installed
  • AND Package Information
  • curl-7.66.0-4.27.1 is installed
  • OR libcurl4-7.66.0-4.27.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • caribou-0.4.21-5.3.1 is installed
  • OR caribou-common-0.4.21-5.3.1 is installed
  • OR caribou-devel-0.4.21-5.3.1 is installed
  • OR caribou-gtk-module-common-0.4.21-5.3.1 is installed
  • OR caribou-gtk2-module-0.4.21-5.3.1 is installed
  • OR caribou-gtk3-module-0.4.21-5.3.1 is installed
  • OR caribou-lang-0.4.21-5.3.1 is installed
  • OR libcaribou0-0.4.21-5.3.1 is installed
  • OR typelib-1_0-Caribou-1_0-0.4.21-5.3.1 is installed
    • BACK