Overview
Request 816919 declined
- Security fix: [bsc#1173027, CVE-2020-8177]
* curl can be tricked my a malicious server to overwrite a local
file when using '-J' ('--remote-header-name') and '-i' ('--head')
in the same command line.
- Add curl-CVE-2020-8177.patch
- Security fix: [bsc#1173026, CVE-2020-8169]
* Partial password leak over DNS on HTTP redirect
- Add curl-CVE-2020-8169.patch
- Security fix: [bsc#1173027, CVE-2020-8177]
* curl can be tricked my a malicious server to overwrite a local
file when using '-J' ('--remote-header-name') and '-i' ('--head')
in the same command line.
- Add curl-CVE-2020-8177.patch
- Security fix: [bsc#1173026, CVE-2020-8169]
* Partial password leak over DNS on HTTP redirect
- Add curl-CVE-2020-8169.patch
- Created by msmeissn
- In state declined
- Open review for SUSE:SLE-15-SP2:Update / curl.15495
- Open review for factory-staging
- Open review for origin-reviewers
Request History
msmeissn created request
- Security fix: [bsc#1173027, CVE-2020-8177]
* curl can be tricked my a malicious server to overwrite a local
file when using '-J' ('--remote-header-name') and '-i' ('--head')
in the same command line.
- Add curl-CVE-2020-8177.patch
- Security fix: [bsc#1173026, CVE-2020-8169]
* Partial password leak over DNS on HTTP redirect
- Add curl-CVE-2020-8169.patch
- Security fix: [bsc#1173027, CVE-2020-8177]
* curl can be tricked my a malicious server to overwrite a local
file when using '-J' ('--remote-header-name') and '-i' ('--head')
in the same command line.
- Add curl-CVE-2020-8177.patch
- Security fix: [bsc#1173026, CVE-2020-8169]
* Partial password leak over DNS on HTTP redirect
- Add curl-CVE-2020-8169.patch
licensedigger accepted review
ok
factory-auto accepted review
Check script succeeded
origin-manager added origin-reviewers as a reviewer
Changing to a lower priority origin.
origin: SUSE:SLE-15-SP2:GA~
origin_old: SUSE:SLE-15-SP2:GA
origin-manager added opensuse-review-team as a reviewer
Additional review required based on origin.
origin-manager accepted review
origin: SUSE:SLE-15-SP2:GA~
origin_old: SUSE:SLE-15-SP2:GA
namtrac accepted review
lkocman-factory declined request
Hello openSUSE contributor
this submission didn't make it to the openSUSE Leap 15.2 Gold Master
Please submit it as a maintenance update instead.
https://en.opensuse.org/openSUSE:Maintenance_update_process
Thank you for your understanding
openSUSE Release team