SUSE-SU-2024:3080-1

UNKNOWN

Security update for curl

Published Sep 2, 2024

Modified 1 years ago

Fix available

Details

This update for curl fixes the following issues:

CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str() (bsc#1228535)

Affected Packages

curl

SUSE Linux Enterprise Installer Updates 15 SP4SUSE Linux Enterprise Installer Updates 15 SP5SUSE Linux Enterprise Micro 5.3SUSE Linux Enterprise Micro 5.4SUSE Linux Enterprise Micro 5.5

Fixed in:

8.0.1-150400.5.47.1

libcurl4

SUSE Linux Enterprise Installer Updates 15 SP4SUSE Linux Enterprise Installer Updates 15 SP5SUSE Linux Enterprise Micro 5.3SUSE Linux Enterprise Micro 5.4SUSE Linux Enterprise Micro 5.5

Fixed in:

8.0.1-150400.5.47.1

libcurl-devel

SUSE Linux Enterprise Module for Basesystem 15 SP5openSUSE Leap 15.5

Fixed in:

8.0.1-150400.5.47.1

libcurl4-32bit

SUSE Linux Enterprise Module for Basesystem 15 SP5openSUSE Leap 15.5

Fixed in:

8.0.1-150400.5.47.1

libcurl-devel-32bit

openSUSE Leap 15.5