File _patchinfo of Package patchinfo.17922

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.17922

<patchinfo incident="17922">
  <issue tracker="bnc" id="1177976">L3: SFTP uploads via curl command result in empty uploaded files</issue>
  <issue tracker="bnc" id="1183933">VUL-0: CVE-2021-22876: curl: Automatic referer leaks credentials</issue>
  <issue tracker="bnc" id="1186114">VUL-0: EMBARGOED: CVE-2021-22898: curl: TELNET stack contents disclosure (1/2)</issue>
  <issue tracker="cve" id="2021-22898"/>
  <issue tracker="cve" id="2021-22876"/>
  <issue tracker="jsc" id="SLE-13843"/>
  <packager>pmonrealgonzalez</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for curl</summary>
  <description>This update for curl fixes the following issues:

- CVE-2021-22876: Fixed an issue where the automatic referer was leaking credentials (bsc#1183933).
- CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114).
- Fix for SFTP uploads when it results in empty uploaded files (bsc#1177976).
- Allow partial chain verification (jsc#SLE-17956).
</description>
</patchinfo>

Places

File _patchinfo of Package patchinfo.17922

Places