Skip to main content
Vulnerability Intelligence
Platform
Solutions
Customers
Resources
Company
Login
Get Demo
SUSE-SU-2020:14585-1 | Mondoo Vulnerability Intelligence
Vulnerability Intelligence
SUSE-SU-2020:14585-1
SUSE-SU-2020:14585-1
UNKNOWN
Security update for curl
Published Dec 21, 2020
Modified 5 years ago
Fix available
Details
This update for curl fixes the following issues:
CVE-2020-8284: Fixed an issue where a malicious FTP server could make curl connect to a different IP (bsc#1179398).
CVE-2020-8285: Fixed an FTP wildcard stack overflow (bsc#1179399).
Affected Packages
curl-openssl1
SUSE Linux Enterprise Server 11-SECURITY
Fixed in:
7.37.0-70.57.1
libcurl4-openssl1
SUSE Linux Enterprise Server 11-SECURITY
Fixed in:
7.37.0-70.57.1
libcurl4-openssl1-32bit
SUSE Linux Enterprise Server 11-SECURITY
Fixed in:
7.37.0-70.57.1
libcurl4-openssl1-x86
SUSE Linux Enterprise Server 11-SECURITY
Fixed in:
7.37.0-70.57.1
References
REPORT
https://bugzilla.suse.com/1179398
REPORT
https://bugzilla.suse.com/1179399
WEB
https://www.suse.com/security/cve/CVE-2020-8284
WEB
https://www.suse.com/security/cve/CVE-2020-8285
ADVISORY
https://www.suse.com/support/update/announcement/2020/suse-su-202014585-1/
Upstream
CVE-2020-8284
CVE-2020-8285
Related
CVE-2020-8284
CVE-2020-8285
Ecosystems
SUSE Linux Enterprise Server 11-SECURITY
Timeline
Published
Dec 21, 2020
Modified
Dec 21, 2020