Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

SUSE: 2021:396-1 Moderate: curl Security Issues Resolved

suse
Calendar Grey October 13, 2021
Dist Suse Esm H88
SUSE Container Maintenance Notice: suse/sle15 featuring critical security updates and enhancements related to wget flaws.
The container suse/sle15 was updated

Summary

Advisory ID: SUSE-SU-2021:3297-1 Released: Wed Oct 6 16:53:29 2021 Summary: Security update for curl Type: security Severity: moderate

Topics%20covered

Topics Covered

security advisory moderate suse curl protocol injection TLS bypass

References

References : 1190373 1190374 CVE-2021-22946 CVE-2021-22947

1190373,1190374,CVE-2021-22946,CVE-2021-22947

This update for curl fixes the following issues:

- CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374).

- CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).

Container Advisory ID : SUSE-CU-2021:396-1
Container Tags : suse/sle15:15.0 , suse/sle15:15.0.4.22.458
Container Release : 4.22.458
Severity : moderate
Type : security

Topics%20covered

Topics Covered

security advisory moderate suse curl protocol injection TLS bypass

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here