SUSE-SU-2020:3735-1 -- SLES curl, libcurl-devel, libcurl4ID: oval:org.secpod.oval:def:89050239 | Date: (C)2023-10-10 (M)2024-04-15 |
Class: PATCH | Family: unix |
This update for curl fixes the following issues: - CVE-2020-8286: Fixed improper OSCP verification in the client side . - CVE-2020-8285: Fixed a stack overflow due to FTP wildcard . - CVE-2020-8284: Fixed an issue where a malicius FTP server could make curl connect to a different IP .
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Desktop 15 SP2 |
Product: |
curl |
libcurl-devel |
libcurl4 |