Overview

File _patchinfo of Package patchinfo.8740

<patchinfo incident="8740">
  <issue tracker="bnc" id="1106019">VUL-0: CVE-2018-14618: curl: NTLM password overflow via integer overflow</issue>
  <issue tracker="bnc" id="1086367">SLES15 RC1 - zypper cmds failing with illegal instruction or segmentation fault</issue>
  <issue tracker="cve" id="2018-14618"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pmonrealgonzalez</packager>
  <description>This update for curl fixes the following issues:

This security issue was fixed:

- CVE-2018-14618: Prevent integer overflow in the NTLM authentication code
  (bsc#1106019)

This non-security issue was fixed:

- Use OPENSSL_config instead of CONF_modules_load_file() to avoid crashes due
  to openssl engines conflicts (bsc#1086367)

This update was imported from the SUSE:SLE-15:Update update project.</description>
  <summary>Security update for curl</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places