Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for curl

curl was updated to fix four security issues.

The following vulnerabilities were fixed:

* CVE-2015-3143: curl could re-use NTML authenticateds connections
* CVE-2015-3144: curl could access memory out of bounds with zero length host names
* CVE-2015-3145: curl cookie parser could access memory out of boundary
* CVE-2015-3148: curl could treat Negotiate as not connection-oriented

Fixed bugs
bnc#927556
VUL-0: CVE-2015-3143: curl: Re-using authenticated connection when unauthenticated
bnc#927607
VUL-0: CVE-2015-3145: curl: cookie parser out of boundary memory access
bnc#927608
VUL-0: CVE-2015-3144: curl: host name out of boundary memory access
bnc#927746
VUL-0: CVE-2015-3148: curl: Negotiate not treated as connection-oriented
CVE-CVE-2015-3143
CVE-CVE-2015-3148
CVE-CVE-2015-3145
CVE-CVE-2015-3144
Selected Binaries
openSUSE Build Service is sponsored by
Places