SUSE-SU-2020:1733-1 -- SLES curl, libcurl-devel, libcurl4| ID: oval:org.secpod.oval:def:89050437 | Date: (C)2023-10-10 (M)2024-04-03 |
| Class: PATCH | Family: unix |
This update for curl fixes the following issues: - CVE-2020-8177: Fixed an issue where curl could have been tricked by a malicious server to overwrite a local file when using the -J option . - CVE-2020-8169: Fixed an issue where could have led to partial password leak over DNS on HTTP redirect .
| Platform: |
| SUSE Linux Enterprise Server 15 SP2 |
| SUSE Linux Enterprise Desktop 15 SP2 |
| Product: |
| curl |
| libcurl-devel |
| libcurl4 |
