SUSE-SU-2021:1786-1 -- SLES curl, libcurl4ID: oval:org.secpod.oval:def:89044437 | Date: (C)2021-06-18 (M)2024-04-15 |
Class: PATCH | Family: unix |
This update for curl fixes the following issues: - CVE-2021-22898: TELNET stack contents disclosure - CVE-2021-22876: The automatic referer leaks credentials - CVE-2020-8286: Inferior OCSP verification - CVE-2020-8285: FTP wildcard stack overflow - CVE-2020-8284: Trusting FTP PASV responses - CVE-2020-8231: libcurl will pick and use the wrong connection with multiple requests with libcurl"s multi API and the "CURLOPT_CONNECT_ONLY" option - Fix: SFTP uploads result in empty uploaded files
Platform: |
SUSE Linux Enterprise Server 12 SP4 |