curl-7.51.0-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10303 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z curl-7.51.0-1.1 on GA media These are all security issues fixed in the curl-7.51.0-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10303 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10303 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2009-0037/ SUSE CVE CVE-2009-0037 page https://www.suse.com/security/cve/CVE-2009-2417/ SUSE CVE CVE-2009-2417 page https://www.suse.com/security/cve/CVE-2013-0249/ SUSE CVE CVE-2013-0249 page https://www.suse.com/security/cve/CVE-2013-1944/ SUSE CVE CVE-2013-1944 page https://www.suse.com/security/cve/CVE-2013-2174/ SUSE CVE CVE-2013-2174 page https://www.suse.com/security/cve/CVE-2013-4545/ SUSE CVE CVE-2013-4545 page https://www.suse.com/security/cve/CVE-2014-0015/ SUSE CVE CVE-2014-0015 page https://www.suse.com/security/cve/CVE-2014-0138/ SUSE CVE CVE-2014-0138 page https://www.suse.com/security/cve/CVE-2014-0139/ SUSE CVE CVE-2014-0139 page https://www.suse.com/security/cve/CVE-2014-3613/ SUSE CVE CVE-2014-3613 page https://www.suse.com/security/cve/CVE-2014-3620/ SUSE CVE CVE-2014-3620 page https://www.suse.com/security/cve/CVE-2014-8150/ SUSE CVE CVE-2014-8150 page https://www.suse.com/security/cve/CVE-2015-3143/ SUSE CVE CVE-2015-3143 page https://www.suse.com/security/cve/CVE-2015-3144/ SUSE CVE CVE-2015-3144 page https://www.suse.com/security/cve/CVE-2015-3145/ SUSE CVE CVE-2015-3145 page https://www.suse.com/security/cve/CVE-2015-3148/ SUSE CVE CVE-2015-3148 page https://www.suse.com/security/cve/CVE-2015-3153/ SUSE CVE CVE-2015-3153 page https://www.suse.com/security/cve/CVE-2015-3236/ SUSE CVE CVE-2015-3236 page https://www.suse.com/security/cve/CVE-2015-3237/ SUSE CVE CVE-2015-3237 page https://www.suse.com/security/cve/CVE-2016-0755/ SUSE CVE CVE-2016-0755 page https://www.suse.com/security/cve/CVE-2016-7167/ SUSE CVE CVE-2016-7167 page https://www.suse.com/security/cve/CVE-2016-8615/ SUSE CVE CVE-2016-8615 page https://www.suse.com/security/cve/CVE-2016-8616/ SUSE CVE CVE-2016-8616 page https://www.suse.com/security/cve/CVE-2016-8617/ SUSE CVE CVE-2016-8617 page https://www.suse.com/security/cve/CVE-2016-8618/ SUSE CVE CVE-2016-8618 page https://www.suse.com/security/cve/CVE-2016-8619/ SUSE CVE CVE-2016-8619 page https://www.suse.com/security/cve/CVE-2016-8620/ SUSE CVE CVE-2016-8620 page https://www.suse.com/security/cve/CVE-2016-8621/ SUSE CVE CVE-2016-8621 page https://www.suse.com/security/cve/CVE-2016-8622/ SUSE CVE CVE-2016-8622 page https://www.suse.com/security/cve/CVE-2016-8623/ SUSE CVE CVE-2016-8623 page https://www.suse.com/security/cve/CVE-2016-8624/ SUSE CVE CVE-2016-8624 page https://www.suse.com/security/cve/CVE-2016-8625/ SUSE CVE CVE-2016-8625 page openSUSE Tumbleweed curl-7.51.0-1.1 libcurl-devel-7.51.0-1.1 libcurl-devel-32bit-7.51.0-1.1 libcurl4-7.51.0-1.1 libcurl4-32bit-7.51.0-1.1 curl-7.51.0-1.1 as a component of openSUSE Tumbleweed libcurl-devel-7.51.0-1.1 as a component of openSUSE Tumbleweed libcurl-devel-32bit-7.51.0-1.1 as a component of openSUSE Tumbleweed libcurl4-7.51.0-1.1 as a component of openSUSE Tumbleweed libcurl4-32bit-7.51.0-1.1 as a component of openSUSE Tumbleweed The redirect implementation in curl and libcurl 5.11 through 7.19.3, when CURLOPT_FOLLOWLOCATION is enabled, accepts arbitrary Location values, which might allow remote HTTP servers to (1) trigger arbitrary requests to intranet servers, (2) read or overwrite arbitrary files via a redirect to a file: URL, or (3) execute arbitrary commands via a redirect to an scp: URL. CVE-2009-0037 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0037.html CVE-2009-0037 https://bugzilla.suse.com/475103 SUSE Bug 475103 https://bugzilla.suse.com/527990 SUSE Bug 527990 lib/ssluse.c in cURL and libcurl 7.4 through 7.19.5, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. CVE-2009-2417 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-2417.html CVE-2009-2417 https://bugzilla.suse.com/527990 SUSE Bug 527990 https://bugzilla.suse.com/528372 SUSE Bug 528372 Stack-based buffer overflow in the Curl_sasl_create_digest_md5_message function in lib/curl_sasl.c in curl and libcurl 7.26.0 through 7.28.1, when negotiating SASL DIGEST-MD5 authentication, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the realm parameter in a (1) POP3, (2) SMTP or (3) IMAP message. CVE-2013-0249 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0249.html CVE-2013-0249 https://bugzilla.suse.com/802411 SUSE Bug 802411 The tailMatch function in cookie.c in cURL and libcurl before 7.30.0 does not properly match the path domain when sending cookies, which allows remote attackers to steal cookies via a matching suffix in the domain of a URL. CVE-2013-1944 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-1944.html CVE-2013-1944 https://bugzilla.suse.com/814655 SUSE Bug 814655 Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character. CVE-2013-2174 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-2174.html CVE-2013-2174 https://bugzilla.suse.com/824517 SUSE Bug 824517 https://bugzilla.suse.com/917692 SUSE Bug 917692 cURL and libcurl 7.18.0 through 7.32.0, when built with OpenSSL, disables the certificate CN and SAN name field verification (CURLOPT_SSL_VERIFYHOST) when the digital signature verification (CURLOPT_SSL_VERIFYPEER) is disabled, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. CVE-2013-4545 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4545.html CVE-2013-4545 https://bugzilla.suse.com/849596 SUSE Bug 849596 https://bugzilla.suse.com/870444 SUSE Bug 870444 https://bugzilla.suse.com/880252 SUSE Bug 880252 https://bugzilla.suse.com/882520 SUSE Bug 882520 https://bugzilla.suse.com/924250 SUSE Bug 924250 cURL and libcurl 7.10.6 through 7.34.0, when more than one authentication method is enabled, re-uses NTLM connections, which might allow context-dependent attackers to authenticate as other users via a request. CVE-2014-0015 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 2.1 AV:N/AC:H/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0015.html CVE-2014-0015 https://bugzilla.suse.com/858673 SUSE Bug 858673 https://bugzilla.suse.com/868627 SUSE Bug 868627 https://bugzilla.suse.com/880252 SUSE Bug 880252 https://bugzilla.suse.com/882520 SUSE Bug 882520 https://bugzilla.suse.com/927556 SUSE Bug 927556 https://bugzilla.suse.com/962983 SUSE Bug 962983 The default configuration in cURL and libcurl 7.10.6 before 7.36.0 re-uses (1) SCP, (2) SFTP, (3) POP3, (4) POP3S, (5) IMAP, (6) IMAPS, (7) SMTP, (8) SMTPS, (9) LDAP, and (10) LDAPS connections, which might allow context-dependent attackers to connect as other users via a request, a similar issue to CVE-2014-0015. CVE-2014-0138 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0138.html CVE-2014-0138 https://bugzilla.suse.com/868627 SUSE Bug 868627 https://bugzilla.suse.com/880252 SUSE Bug 880252 https://bugzilla.suse.com/882520 SUSE Bug 882520 cURL and libcurl 7.1 before 7.36.0, when using the OpenSSL, axtls, qsossl or gskit libraries for TLS, recognize a wildcard IP address in the subject's Common Name (CN) field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority. CVE-2014-0139 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0139.html CVE-2014-0139 https://bugzilla.suse.com/868629 SUSE Bug 868629 https://bugzilla.suse.com/880252 SUSE Bug 880252 https://bugzilla.suse.com/882520 SUSE Bug 882520 cURL and libcurl before 7.38.0 does not properly handle IP addresses in cookie domain names, which allows remote attackers to set cookies for or send arbitrary cookies to certain sites, as demonstrated by a site at 192.168.0.1 setting cookies for a site at 127.168.0.1. CVE-2014-3613 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3613.html CVE-2014-3613 https://bugzilla.suse.com/894575 SUSE Bug 894575 cURL and libcurl before 7.38.0 allow remote attackers to bypass the Same Origin Policy and set cookies for arbitrary sites by setting a cookie for a top-level domain. CVE-2014-3620 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3620.html CVE-2014-3620 https://bugzilla.suse.com/1199221 SUSE Bug 1199221 https://bugzilla.suse.com/894575 SUSE Bug 894575 https://bugzilla.suse.com/895991 SUSE Bug 895991 CRLF injection vulnerability in libcurl 6.0 through 7.x before 7.40.0, when using an HTTP proxy, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a URL. CVE-2014-8150 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8150.html CVE-2014-8150 https://bugzilla.suse.com/911363 SUSE Bug 911363 https://bugzilla.suse.com/951391 SUSE Bug 951391 cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015. CVE-2015-3143 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3143.html CVE-2015-3143 https://bugzilla.suse.com/927556 SUSE Bug 927556 The fix_hostname function in cURL and libcurl 7.37.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) or possibly have other unspecified impact via a zero-length host name, as demonstrated by "http://:80" and ":80." CVE-2015-3144 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3144.html CVE-2015-3144 https://bugzilla.suse.com/927608 SUSE Bug 927608 https://bugzilla.suse.com/951391 SUSE Bug 951391 The sanitize_cookie_path function in cURL and libcurl 7.31.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds write and crash) or possibly have other unspecified impact via a cookie path containing only a double-quote character. CVE-2015-3145 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3145.html CVE-2015-3145 https://bugzilla.suse.com/927607 SUSE Bug 927607 cURL and libcurl 7.10.6 through 7.41.0 do not properly re-use authenticated Negotiate connections, which allows remote attackers to connect as other users via a request. CVE-2015-3148 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3148.html CVE-2015-3148 https://bugzilla.suse.com/1092962 SUSE Bug 1092962 https://bugzilla.suse.com/927746 SUSE Bug 927746 The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents. CVE-2015-3153 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3153.html CVE-2015-3153 https://bugzilla.suse.com/928533 SUSE Bug 928533 https://bugzilla.suse.com/951391 SUSE Bug 951391 cURL and libcurl 7.40.0 through 7.42.1 send the HTTP Basic authentication credentials for a previous connection when reusing a reset (curl_easy_reset) connection handle to send a request to the same host name, which allows remote attackers to obtain sensitive information via unspecified vectors. CVE-2015-3236 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3236.html CVE-2015-3236 https://bugzilla.suse.com/934501 SUSE Bug 934501 https://bugzilla.suse.com/951391 SUSE Bug 951391 The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and crash) via crafted length and offset values. CVE-2015-3237 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3237.html CVE-2015-3237 https://bugzilla.suse.com/934502 SUSE Bug 934502 The ConnectionExists function in lib/url.c in libcurl before 7.47.0 does not properly re-use NTLM-authenticated proxy connections, which might allow remote attackers to authenticate as other users via a request, a similar issue to CVE-2014-0015. CVE-2016-0755 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0755.html CVE-2016-0755 https://bugzilla.suse.com/962983 SUSE Bug 962983 Multiple integer overflows in the (1) curl_escape, (2) curl_easy_escape, (3) curl_unescape, and (4) curl_easy_unescape functions in libcurl before 7.50.3 allow attackers to have unspecified impact via a string of length 0xffffffff, which triggers a heap-based buffer overflow. CVE-2016-7167 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7167.html CVE-2016-7167 https://bugzilla.suse.com/998760 SUSE Bug 998760 A flaw was found in curl before version 7.51. If cookie state is written into a cookie jar file that is later read back and used for subsequent requests, a malicious HTTP server can inject new cookies for arbitrary domains into said cookie jar. CVE-2016-8615 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8615.html CVE-2016-8615 https://bugzilla.suse.com/1005633 SUSE Bug 1005633 A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password. CVE-2016-8616 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8616.html CVE-2016-8616 https://bugzilla.suse.com/1005634 SUSE Bug 1005634 The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via `CURLOPT_USERNAME`. CVE-2016-8617 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8617.html CVE-2016-8617 https://bugzilla.suse.com/1005635 SUSE Bug 1005635 The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free due to an unsafe `size_t` multiplication, on systems using 32 bit `size_t` variables. CVE-2016-8618 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8618.html CVE-2016-8618 https://bugzilla.suse.com/1005637 SUSE Bug 1005637 The function `read_data()` in security.c in curl before version 7.51.0 is vulnerable to memory double free. CVE-2016-8619 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8619.html CVE-2016-8619 https://bugzilla.suse.com/1005638 SUSE Bug 1005638 The 'globbing' feature in curl before version 7.51.0 has a flaw that leads to integer overflow and out-of-bounds read via user controlled input. CVE-2016-8620 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8620.html CVE-2016-8620 https://bugzilla.suse.com/1005640 SUSE Bug 1005640 The `curl_getdate` function in curl before version 7.51.0 is vulnerable to an out of bounds read if it receives an input with one digit short. CVE-2016-8621 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8621.html CVE-2016-8621 https://bugzilla.suse.com/1005642 SUSE Bug 1005642 The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer. CVE-2016-8622 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8622.html CVE-2016-8622 https://bugzilla.suse.com/1005643 SUSE Bug 1005643 A flaw was found in curl before version 7.51.0. The way curl handles cookies permits other threads to trigger a use-after-free leading to information disclosure. CVE-2016-8623 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8623.html CVE-2016-8623 https://bugzilla.suse.com/1005645 SUSE Bug 1005645 curl before version 7.51.0 doesn't parse the authority component of the URL correctly when the host name part ends with a '#' character, and could instead be tricked into connecting to a different host. This may have security implications if you for example use an URL parser that follows the RFC to check for allowed domains before using curl to request them. CVE-2016-8624 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8624.html CVE-2016-8624 https://bugzilla.suse.com/1005646 SUSE Bug 1005646 curl before version 7.51.0 uses outdated IDNA 2003 standard to handle International Domain Names and this may lead users to potentially and unknowingly issue network transfer requests to the wrong host. CVE-2016-8625 openSUSE Tumbleweed:curl-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl-devel-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-32bit-7.51.0-1.1 openSUSE Tumbleweed:libcurl4-7.51.0-1.1 moderate 4 AV:N/AC:H/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8625.html CVE-2016-8625 https://bugzilla.suse.com/1005649 SUSE Bug 1005649