Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2024:3926-1

UNKNOWN

Security update for curl

Published Nov 6, 2024

Modified 1 years ago

Fix available

Details

This update for curl fixes the following issues:

CVE-2024-9681: Fixed HSTS subdomain overwrites parent cache entry (bsc#1232528)

Affected Packages

SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOScurl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOSlibcurl-devel

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOSlibcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOSlibcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSScurl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSSlibcurl-devel

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSSlibcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSSlibcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Installer Updates 15 SP4curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Installer Updates 15 SP4libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Installer Updates 15 SP5curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Installer Updates 15 SP5libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Micro 5.3curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Micro 5.3libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Micro 5.4curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Micro 5.4libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Micro 5.5curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Micro 5.5libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Module for Basesystem 15 SP5curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Module for Basesystem 15 SP5libcurl-devel

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Module for Basesystem 15 SP5libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Module for Basesystem 15 SP5libcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server 15 SP4-LTSScurl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server 15 SP4-LTSSlibcurl-devel

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server 15 SP4-LTSSlibcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server 15 SP4-LTSSlibcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP4curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP4libcurl-devel

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP4libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP4libcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Proxy 4.3curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Proxy 4.3libcurl-devel

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Proxy 4.3libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Proxy 4.3libcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Server 4.3curl

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Server 4.3libcurl-devel

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Server 4.3libcurl4

Fixed in:

8.0.1-150400.5.56.1

SUSE:Manager Server 4.3libcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

openSUSE:Leap 15.5curl

Fixed in:

8.0.1-150400.5.56.1

openSUSE:Leap 15.5libcurl-devel

Fixed in:

8.0.1-150400.5.56.1

openSUSE:Leap 15.5libcurl-devel-32bit

Fixed in:

8.0.1-150400.5.56.1

openSUSE:Leap 15.5libcurl4

Fixed in:

8.0.1-150400.5.56.1

openSUSE:Leap 15.5libcurl4-32bit

Fixed in:

8.0.1-150400.5.56.1

openSUSE:Leap Micro 5.5curl

Fixed in:

8.0.1-150400.5.56.1

openSUSE:Leap Micro 5.5libcurl4

Fixed in:

8.0.1-150400.5.56.1

References

REPORThttps://bugzilla.suse.com/1232528 WEBhttps://www.suse.com/security/cve/CVE-2024-9681 ADVISORYhttps://www.suse.com/support/update/announcement/2024/suse-su-20243926-1/

Upstream

CVE-2024-9681

Ecosystems

Timeline

PublishedNov 6, 2024

ModifiedNov 6, 2024

SUSE-SU-2024:3926-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2024:3926-1

Details

Affected Packages

References

Upstream

Related

Ecosystems

Timeline