SUSE-SU-2022:2829-1 -- SLES curl, libcurl-devel, libcurl4ID: oval:org.secpod.oval:def:89046887 | Date: (C)2022-08-19 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for curl fixes the following issues: - CVE-2022-27781: Fixed an issue where curl will get stuck in an infinite loop when trying to retrieve details about a TLS server"s certificate chain . - CVE-2022-27782: Fixed an issue where TLS and SSH connections would be reused even when a related option had been changed . - CVE-2022-32206: Fixed an uncontrolled memory consumption issue caused by an unbounded number of compression layers . - CVE-2022-32208: Fixed an incorrect message verification issue when performing FTP transfers using krb5 .
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Server 15 SP1 |
Product: |
curl |
libcurl-devel |
libcurl4 |