Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
202
security advisoryimportantcurlopenSUSE: Critical Proxy Cache Poisoning and OOB Read Flaw 2025:03267-1
An update that solves two vulnerabilities, contains two features and has two security fixes can now be installed.. # Security update for curl Announcement ID: SUSE-SU-2025:03267-1 Release Date: 2025-09-18T11:06:30Z Rating: important References: * bsc#1246197 * bsc#1249191 * bsc#1249348 * bsc#1249367 * jsc#PED-13055 * jsc#PED-13056 Cross-References: * CVE-2025-10148 * CVE-2025-9086 CVSS scores: * CVE-2025-10148 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2025-9086 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-9086 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Proxy 4.3 LTS * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Retail Branch Server 4.3 LTS * SUSE Manager Server 4.3 * SUSE Manager Server 4.3 LTS An update that solves two vulnerabilities, contains two features and has two security fixes can now be installed. ## Description: This update for curl fixesthe following issues: Security issues fixed: * CVE-2025-9086: bug in patch comparison logic when processing cookies can lead to out-of-bounds read in heap buffer (bsc#1249191). * CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server (bsc#1249348). Other issues fixed: * Fix the --ftp-pasv option in curl v8.14.1 (bsc#1246197). * tool_getparam: fix --ftp-pasv [5f805ee] * Update to version 8.14.1 (jsc#PED-13055, jsc#PED-13056). * TLS: add CURLOPT_SSL_SIGNATURE_ALGORITHMS and --sigalgs. * websocket: add option to disable auto-pong reply. * huge number of bugfixes. Please see https://curl.se/ch/ for full changelogs. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-3267=1 * SUSE Linux Enterprise High Performance Computing 15 SP4 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2025-3267=1 * SUSE Linux Enterprise Server 15 SP4 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2025-3267=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2025-3267=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3267=1 SUSE-SLE- INSTALLER-15-SP4-2025-3267=1 * SUSE Linux Enterprise Desktop 15 SP4 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2025-3267=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2025-3267=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2025-3267=1 * SUSE Linux Enterprise High Performance Computing 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2025-3267=1 * SUSE Linux Enterprise Server 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2025-3267=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2025-3267=1 SUSE-SLE-Product- SLES_SAP-15-SP5-2025-3267=1 * SUSE Linux Enterprise Desktop 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2025-3267=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3267=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3267=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3267=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3267=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-3267=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3267=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3267=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3267=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3267=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3267=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3267=1 * SUSE Manager Proxy 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-LTS-2025-3267=1 * SUSE Manager Retail Branch Server 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-LTS-2025-3267=1 * SUSE Manager Server 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-LTS-2025-3267=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * curl-mini-debugsource-8.14.1-150400.5.69.1 * curl-debugsource-8.14.1-150400.5.69.1 *libcurl-mini4-debuginfo-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-mini4-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * openSUSE Leap 15.4 (noarch) * curl-zsh-completion-8.14.1-150400.5.69.1 * curl-fish-completion-8.14.1-150400.5.69.1 * libcurl-devel-doc-8.14.1-150400.5.69.1 * openSUSE Leap 15.4 (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * libcurl-devel-32bit-8.14.1-150400.5.69.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcurl-devel-64bit-8.14.1-150400.5.69.1 * libcurl4-64bit-8.14.1-150400.5.69.1 * libcurl4-64bit-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing 15 SP4 (aarch64 x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server 15 SP4 (aarch64 ppc64le s390x x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Desktop 15 SP4 (x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Manager Proxy 4.3 (x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing 15 SP5 (aarch64 x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server 15 SP5 (aarch64 ppc64le s390x x86_64) *libcurl4-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Desktop 15 SP5 (x86_64) * libcurl4-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) *curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Manager Proxy 4.3 LTS (x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Manager Retail Branch Server 4.3 LTS (x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 * SUSE Manager Server 4.3 LTS (ppc64le s390x x86_64) * curl-debugsource-8.14.1-150400.5.69.1 * libcurl4-8.14.1-150400.5.69.1 * curl-debuginfo-8.14.1-150400.5.69.1 * curl-8.14.1-150400.5.69.1 * libcurl-devel-8.14.1-150400.5.69.1 * libcurl4-debuginfo-8.14.1-150400.5.69.1 * SUSE Manager Server 4.3 LTS (x86_64) * libcurl4-32bit-debuginfo-8.14.1-150400.5.69.1 * libcurl4-32bit-8.14.1-150400.5.69.1 ## References: * https://www.suse.com/security/cve/CVE-2025-10148.html *https://www.suse.com/security/cve/CVE-2025-9086.html * https://bugzilla.suse.com/show_bug.cgi?id=1246197 * https://bugzilla.suse.com/show_bug.cgi?id=1249191 * https://bugzilla.suse.com/show_bug.cgi?id=1249348 * https://bugzilla.suse.com/show_bug.cgi?id=1249367 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-13055&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-13056&page_caps=&user_role= . Critical patch released for curl addresses vulnerabilities related to proxy cache poisoning and out-of-bounds read problems affecting openSUSE.. curl patch, SUSE Linux advisory, Linux updates, security fixes. . Severity: Important. LinuxSecurity.com Team
Sep 18, 2025
•Important
OpenSUSE
202
security advisoryimportantcurlopenSUSE: curl Important Proxy Cache Poisoning Fix 2025:03268-1
An update that solves two vulnerabilities, contains two features and has two security fixes can now be installed.. # Security update for curl Announcement ID: SUSE-SU-2025:03268-1 Release Date: 2025-09-18T11:09:18Z Rating: important References: * bsc#1246197 * bsc#1249191 * bsc#1249348 * bsc#1249367 * jsc#PED-13055 * jsc#PED-13056 Cross-References: * CVE-2025-10148 * CVE-2025-9086 CVSS scores: * CVE-2025-10148 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2025-9086 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-9086 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Proxy 4.3 LTS * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Retail Branch Server 4.3 LTS * SUSE Manager Server 4.3 * SUSE Manager Server 4.3 LTS An update that solves two vulnerabilities, contains two features and has two security fixes can now be installed. ## Description: This update for curl fixes the following issues: Security issues fixed: * CVE-2025-9086: bug in patch comparison logic when processing cookies can lead to out-of-bounds read in heap buffer (bsc#1249191). * CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server (bsc#1249348). Other issues fixed: * Fix the --ftp-pasv option in curl v8.14.1 (bsc#1246197). * tool_getparam: fix --ftp-pasv [5f805ee] * Update to version 8.14.1 (jsc#PED-13055, jsc#PED-13056). * TLS: add CURLOPT_SSL_SIGNATURE_ALGORITHMS and --sigalgs. * websocket: add option to disable auto-pong reply. * huge number of bugfixes. Please see https://curl.se/ch/ for full changelogs. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3268=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3268=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3268=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patchSUSE-SLE-Micro-5.4-2025-3268=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3268=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-3268=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-3268=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-3268=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3268=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3268=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3268=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3268=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3268=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3268=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3268=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3268=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3268=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3268=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3268=1 * SUSE Manager Proxy 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-LTS-2025-3268=1 * SUSE Manager Retail Branch Server 4.3 LTS zypper in -t patchSUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-LTS-2025-3268=1 * SUSE Manager Server 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-LTS-2025-3268=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-3268=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-3268=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-3268=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-3268=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * brotli-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * openSUSE Leap 15.6 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * libbrotlienc1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlienc1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 *libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * Basesystem Module 15-SP6 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 *libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * Basesystem Module 15-SP7 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libcurl-devel-8.14.1-150200.4.91.1 * curl-debugsource-8.14.1-150200.4.91.1 * curl-8.14.1-150200.4.91.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libcurl4-8.14.1-150200.4.91.1 * curl-debuginfo-8.14.1-150200.4.91.1 * libbrotlidec1-1.0.7-150200.3.5.1 * libcurl4-debuginfo-8.14.1-150200.4.91.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-debuginfo-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High PerformanceComputing ESPOS 15 SP4 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 *libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libcurl-devel-8.14.1-150200.4.91.1 * curl-debugsource-8.14.1-150200.4.91.1 * curl-8.14.1-150200.4.91.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libcurl4-8.14.1-150200.4.91.1 * curl-debuginfo-8.14.1-150200.4.91.1 * libbrotlidec1-1.0.7-150200.3.5.1 * libcurl4-debuginfo-8.14.1-150200.4.91.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-debuginfo-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 *SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libcurl-devel-8.14.1-150200.4.91.1 * curl-debugsource-8.14.1-150200.4.91.1 * curl-8.14.1-150200.4.91.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libcurl4-8.14.1-150200.4.91.1 * curl-debuginfo-8.14.1-150200.4.91.1 * libbrotlidec1-1.0.7-150200.3.5.1 * libcurl4-debuginfo-8.14.1-150200.4.91.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-debuginfo-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 *libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Manager Proxy 4.3 LTS (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 *libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Manager Retail Branch Server 4.3 LTS (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Manager Server 4.3 LTS (ppc64le s390x x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libbrotlidec1-1.0.7-150200.3.5.1 * SUSE Manager Server 4.3 LTS (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libbrotlienc1-debuginfo-1.0.7-150200.3.5.1 * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlienc1-1.0.7-150200.3.5.1 * libbrotli-devel-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libcurl-devel-8.14.1-150200.4.91.1 * curl-debugsource-8.14.1-150200.4.91.1 * curl-8.14.1-150200.4.91.1 *brotli-debugsource-1.0.7-150200.3.5.1 * libcurl4-8.14.1-150200.4.91.1 * curl-debuginfo-8.14.1-150200.4.91.1 * libbrotlidec1-1.0.7-150200.3.5.1 * libcurl4-debuginfo-8.14.1-150200.4.91.1 * SUSE Enterprise Storage 7.1 (x86_64) * libbrotlidec1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-1.0.7-150200.3.5.1 * libcurl4-32bit-debuginfo-8.14.1-150200.4.91.1 * libbrotlicommon1-32bit-debuginfo-1.0.7-150200.3.5.1 * libbrotlidec1-32bit-debuginfo-1.0.7-150200.3.5.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * curl-debugsource-8.14.1-150200.4.91.1 * curl-8.14.1-150200.4.91.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libcurl4-8.14.1-150200.4.91.1 * curl-debuginfo-8.14.1-150200.4.91.1 * libbrotlidec1-1.0.7-150200.3.5.1 * libcurl4-debuginfo-8.14.1-150200.4.91.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * curl-debugsource-8.14.1-150200.4.91.1 * curl-8.14.1-150200.4.91.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libcurl4-8.14.1-150200.4.91.1 * curl-debuginfo-8.14.1-150200.4.91.1 * libbrotlidec1-1.0.7-150200.3.5.1 * libcurl4-debuginfo-8.14.1-150200.4.91.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * brotli-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-1.0.7-150200.3.5.1 * libbrotlidec1-debuginfo-1.0.7-150200.3.5.1 * libbrotlicommon1-debuginfo-1.0.7-150200.3.5.1 * curl-debugsource-8.14.1-150200.4.91.1 * curl-8.14.1-150200.4.91.1 * brotli-debugsource-1.0.7-150200.3.5.1 * libcurl4-8.14.1-150200.4.91.1 *curl-debuginfo-8.14.1-150200.4.91.1 * libbrotlidec1-1.0.7-150200.3.5.1 * libcurl4-debuginfo-8.14.1-150200.4.91.1 ## References: * https://www.suse.com/security/cve/CVE-2025-10148.html * https://www.suse.com/security/cve/CVE-2025-9086.html * https://bugzilla.suse.com/show_bug.cgi?id=1246197 * https://bugzilla.suse.com/show_bug.cgi?id=1249191 * https://bugzilla.suse.com/show_bug.cgi?id=1249348 * https://bugzilla.suse.com/show_bug.cgi?id=1249367 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-13055&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-13056&page_caps=&user_role= . Two critical vulnerabilities addressed in curl for openSUSE, namely proxy abuse potential and stack buffer overflow threats.. openSUSE curl security important patch. . Severity: Important. LinuxSecurity.com Team
Sep 18, 2025
•Important
OpenSUSE
100
security advisorySuSEimportantSUSE: Critical Proxy Cache Poisoning Vulnerability CVE-2025-10148
* bsc#1249191 * bsc#1249348 Cross-References: * CVE-2025-10148 . # Security update for curl Announcement ID: SUSE-SU-2025:03173-1 Release Date: 2025-09-11T12:55:04Z Rating: important References: * bsc#1249191 * bsc#1249348 Cross-References: * CVE-2025-10148 * CVE-2025-9086 CVSS scores: * CVE-2025-9086 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2025-9086: bug in path comparison logic when processing cookies can lead to out-of-bounds read in heap buffer (bsc#1249191). * CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server (bsc#1249348). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2025-3173=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3173=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * curl-debugsource-8.0.1-11.108.1 * libcurl4-8.0.1-11.108.1 * curl-8.0.1-11.108.1 * libcurl4-debuginfo-8.0.1-11.108.1 * curl-debuginfo-8.0.1-11.108.1 * libcurl-devel-8.0.1-11.108.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x x86_64) * libcurl4-32bit-8.0.1-11.108.1 * libcurl4-debuginfo-32bit-8.0.1-11.108.1 * SUSE Linux Enterprise Server 12 SP5 LTSS ExtendedSecurity (x86_64) * curl-debugsource-8.0.1-11.108.1 * libcurl4-8.0.1-11.108.1 * curl-8.0.1-11.108.1 * libcurl4-debuginfo-8.0.1-11.108.1 * libcurl4-debuginfo-32bit-8.0.1-11.108.1 * libcurl4-32bit-8.0.1-11.108.1 * curl-debuginfo-8.0.1-11.108.1 * libcurl-devel-8.0.1-11.108.1 ## References: * https://www.suse.com/security/cve/CVE-2025-10148.html * https://www.suse.com/security/cve/CVE-2025-9086.html * https://bugzilla.suse.com/show_bug.cgi?id=1249191 * https://bugzilla.suse.com/show_bug.cgi?id=1249348 . Two critical vulnerabilities in cURL have been identified that impact SUSE Linux Enterprise, potentially exposing systems to significant security threats. Immediate updates are highly advised.. SUSE curl update patches security important. . Severity: Important. LinuxSecurity.com Team
Sep 11, 2025
•Important
SuSE
200
security advisorymoderatehttpdModerate Alert: Proxy Cache Poisoning Vulnerability in Scientific Linux SL6
It was discovered that the HTTP parser in httpd incorrectly allowed certain characters not permitted by the HTTP protocol specification to appear unencoded in HTTP request headers. If httpd was used in conjunction with a proxy or backend server that interpreted those characters differently, a remote attacker could possibly use this flaw to inject data into HTTP responses, resulting in proxy ca [More...]. Synopsis: Moderate: httpd security and bug fix update Advisory ID: SLSA-2017:1721-1 Issue Date: 2017-07-11 CVE Numbers: CVE-2016-8743 -- Security Fix(es): * It was discovered that the HTTP parser in httpd incorrectly allowed certain characters not permitted by the HTTP protocol specification to appear unencoded in HTTP request headers. If httpd was used in conjunction with a proxy or backend server that interpreted those charactersdifferently, a remote attacker could possibly use this flaw to inject data into HTTP responses, resulting in proxy cache poisoning. (CVE-2016-8743) Note: The fix for the CVE-2016-8743 issue causes httpd to return "400 Bad Request" error to HTTP clients which do not strictly follow HTTP protocol specification. A newly introduced configuration directive "HttpProtocolOptions Unsafe" can be used to re-enable the old less strict parsing. However, such setting also re-introduces the CVE-2016-8743 issue. Note: Administrators of Red Hat Satellite 5 and Red Hat Satellite Proxy 5 systems should consult Red Hat Knowledgebase article 3013361 linked to in the Reference section before installing this update. Bug Fix(es): * Previously, httpd was unable to correctly check a boundary of an array, and in rare cases it attempted to access an element of an array that was out of bounds. Consequently, httpd terminated unexpectedly with a segmentation fault at proxy_util.c. With this update, bounds checking has been fixed, and httpd no longer crashes. -- SL6 x86_64 httpd-2.2.15-60.el6_9.4.x86_64.rpm httpd-debuginfo-2.2.15-60.el6_9.4.x86_64.rpm httpd-tools-2.2.15-60.el6_9.4.x86_64.rpm httpd-debuginfo-2.2.15-60.el6_9.4.i686.rpm httpd-devel-2.2.15-60.el6_9.4.i686.rpm httpd-devel-2.2.15-60.el6_9.4.x86_64.rpm mod_ssl-2.2.15-60.el6_9.4.x86_64.rpm i386 httpd-2.2.15-60.el6_9.4.i686.rpm httpd-debuginfo-2.2.15-60.el6_9.4.i686.rpm httpd-tools-2.2.15-60.el6_9.4.i686.rpm httpd-devel-2.2.15-60.el6_9.4.i686.rpm mod_ssl-2.2.15-60.el6_9.4.i686.rpm noarch httpd-manual-2.2.15-60.el6_9.4.noarch.rpm - Scientific Linux Development Team . Recent patch for nginx released to resolve configuration vulnerabilities, addressing HTTP header handling and averting potential DoS attacks on CentOS.. httpd security update, proxy cache issues, Scientific Linux security. . LinuxSecurity.com Team
Jul 11, 2017
Scientific Linux
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!