Security update for compat-curl2
SUSE Security Update: Security update for compat-curl2
This update of compat-curl2 fixes several security issues.
* fixes for the cookie domain tailmatch vulnerability
(bnc#814655)
* updated curl CA-Cert Bundle (bnc#810010)
* fixes for a potential BEAST attack (bnc#742306)
Security Issue reference:
* CVE-2013-1944
>
Announcement ID: | SUSE-SU-2013:0772-1 |
Rating: | moderate |
References: | #742306 #810010 #814655 |
Affected Products: |
An update that solves one vulnerability and has two fixes is now available.
Description:
This update of compat-curl2 fixes several security issues.
* fixes for the cookie domain tailmatch vulnerability
(bnc#814655)
* updated curl CA-Cert Bundle (bnc#810010)
* fixes for a potential BEAST attack (bnc#742306)
Security Issue reference:
* CVE-2013-1944
Package List:
- SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64):
- compat-curl2-7.11.0-20.9.1
- SUSE Linux Enterprise Server 10 SP4 (s390x x86_64):
- compat-curl2-32bit-7.11.0-20.9.1
- SUSE Linux Enterprise Server 10 SP4 (ia64):
- compat-curl2-x86-7.11.0-20.9.1
- SUSE Linux Enterprise Server 10 SP4 (ppc):
- compat-curl2-64bit-7.11.0-20.9.1
- SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):
- compat-curl2-7.11.0-20.9.1
- SUSE Linux Enterprise Desktop 10 SP4 (x86_64):
- compat-curl2-32bit-7.11.0-20.9.1
References:
- http://support.novell.com/security/cve/CVE-2013-1944.html
- https://bugzilla.novell.com/742306
- https://bugzilla.novell.com/810010
- https://bugzilla.novell.com/814655
- http://download.suse.com/patch/finder/?keywords=4dd1f084a8e5b92825d43c3c3d0a2326