SUSE-SU-2018:3624-1 -- SLES curl, libcurl-devel, libcurl4| ID: oval:org.secpod.oval:def:89049639 | Date: (C)2023-12-20 (M)2023-12-20 |
| Class: PATCH | Family: unix |
This update for curl fixes the following issues: - CVE-2018-16839: A SASL password overflow via integer overflow was fixed which could lead to crashes - CVE-2018-16840: A use-after-free in SASL handle close was fixed which could lead to crashes - CVE-2018-16842: A Out-of-bounds Read in tool_msgs.c was fixed which could lead to crashes
| Platform: |
| SUSE Linux Enterprise Server 15 |
| SUSE Linux Enterprise Desktop 15 |
| Product: |
| curl |
| libcurl-devel |
| libcurl4 |
