Project not found: isv:SUSE:Edge:3.2:Staging:suse-edge:Factory:PR-63
Overview

File _patchinfo of Package patchinfo.27751

<patchinfo incident="27751">
  <issue tracker="bnc" id="1207992">VUL-0: CVE-2023-23916: curl: HTTP multi-header compression denial of service</issue>
  <issue tracker="bnc" id="1209212">VUL-0: CVE-2023-27536: curl: GSS delegation too eager connection re-use</issue>
  <issue tracker="bnc" id="1209209">VUL-0: CVE-2023-27533: curl: TELNET option IAC injection</issue>
  <issue tracker="bnc" id="1209214">VUL-0: CVE-2023-27538: curl: SSH connection too eager reuse still</issue>
  <issue tracker="bnc" id="1209211">VUL-0: CVE-2023-27535: curl: FTP too eager connection reuse</issue>
  <issue tracker="bnc" id="1209210">VUL-0: CVE-2023-27534: curl: SFTP path ~ resolving discrepancy</issue>
  <issue tracker="cve" id="2023-27535"/>
  <issue tracker="cve" id="2023-27534"/>
  <issue tracker="cve" id="2023-27536"/>
  <issue tracker="cve" id="2023-27538"/>
  <issue tracker="cve" id="2023-27533"/>
  <issue tracker="cve" id="2023-23916"/>
  <packager>pmonrealgonzalez</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for curl</summary>
  <description>This update for curl fixes the following issues:

- CVE-2023-27533: Fixed TELNET option IAC injection (bsc#1209209).
- CVE-2023-27534: Fixed SFTP path ~ resolving discrepancy (bsc#1209210).
- CVE-2023-27535: Fixed FTP too eager connection reuse (bsc#1209211).
- CVE-2023-27536: Fixed GSS delegation too eager connection reuse (bsc#1209212).
- CVE-2023-27538: Fixed SSH connection too eager reuse still (bsc#1209214).
- CVE-2023-23916: Fixed HTTP multi-header compression denial of service (bsc#1207992).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places