Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2022:920-1 Moderate Curl Security Patch Release Announcements

suse
Calendar Grey May 7, 2022
Dist Suse Esm H88
SUSE Container Patch Notice for suse/sles12sp3 provides updates for medium risk vulnerabilities in curl. Ensure your system is current.
The container suse/sles12sp3 was updated

Summary

Advisory ID: SUSE-SU-2022:1564-1 Released: Fri May 6 17:09:17 2022 Summary: Security update for curl Type: security Severity: moderate

Topics%20covered

Topics Covered

security advisory patch suse curl container

References

References : 1198614 1198766 CVE-2022-22576 CVE-2022-27776

1198614,1198766,CVE-2022-22576,CVE-2022-27776

This update for curl fixes the following issues:

- CVE-2022-27776: Fixed Auth/cookie leak on redirect (bsc#1198766)

- CVE-2022-22576: Fixed OAUTH2 bearer bypass in connection re-use (bsc#1198614)

The following package changes have been done:

- libcurl4-7.37.0-37.73.1 updated

Container Advisory ID : SUSE-CU-2022:920-1
Container Tags : suse/sles12sp3:2.0.2 , suse/sles12sp3:24.384 , suse/sles12sp3:latest
Container Release : 24.384
Severity : moderate
Type : security

Topics%20covered

Topics Covered

security advisory patch suse curl container

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here