Overview

File _patchinfo of Package patchinfo.28980

<patchinfo incident="28980">
  <issue tracker="bnc" id="1211339">[Build :27111:curl] openQA test fails in update_minimal</issue>
  <issue tracker="bnc" id="1211232">VUL-0: EMBARGOED: CVE-2023-28321: curl: IDN wildcard match</issue>
  <issue tracker="bnc" id="1211231">VUL-0: EMBARGOED: CVE-2023-28320: curl: siglongjmp race condition</issue>
  <issue tracker="bnc" id="1211233">VUL-0: EMBARGOED: CVE-2023-28322: curl: POST-after-PUT confusion</issue>
  <issue tracker="cve" id="2023-28320"/>
  <issue tracker="cve" id="2023-28321"/>
  <issue tracker="cve" id="2023-28322"/>
  <packager>pmonrealgonzalez</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for curl</summary>
  <description>This update for curl fixes the following issues:

- CVE-2023-28320: Fixed siglongjmp race condition (bsc#1211231).
- CVE-2023-28321: Fixed IDN wildcard matching (bsc#1211232).
- CVE-2023-28322: Fixed POST-after-PUT confusion (bsc#1211233).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places