SUSE-SU-2020:1733-1 -- SLES curl, libcurl-devel, libcurl4ID: oval:org.secpod.oval:def:89050437 | Date: (C)2023-10-10 (M)2024-04-03 |
Class: PATCH | Family: unix |
This update for curl fixes the following issues: - CVE-2020-8177: Fixed an issue where curl could have been tricked by a malicious server to overwrite a local file when using the -J option . - CVE-2020-8169: Fixed an issue where could have led to partial password leak over DNS on HTTP redirect .
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Desktop 15 SP2 |
Product: |
curl |
libcurl-devel |
libcurl4 |