2024-10-15 13:37:56 +02:00
|
|
|
<patchinfo incident="67">
|
2024-10-11 10:55:07 +02:00
|
|
|
<!-- generated from request(s) 345431 -->
|
|
|
|
<issue tracker="bnc" id="1230093">VUL-0: CVE-2024-8096: curl: OCSP stapling bypass with GnuTLS</issue>
|
|
|
|
<issue tracker="bnc" id="1230516">L3: curl: aws-sigv4 does not work with URLs containing "=" and other special characters</issue>
|
|
|
|
<issue tracker="cve" id="2024-8096"/>
|
|
|
|
<packager>pmonrealgonzalez</packager>
|
|
|
|
<rating>important</rating>
|
|
|
|
<category>security</category>
|
|
|
|
<summary>Security update for curl</summary>
|
|
|
|
<description>This update for curl fixes the following issues:
|
|
|
|
|
|
|
|
Security issue fixed:
|
|
|
|
|
|
|
|
- CVE-2024-8096: Fixed OCSP stapling bypass with GnuTLS (bsc#1230093).
|
|
|
|
|
|
|
|
- Make special characters in URL work with aws-sigv4 [bsc#1230516]
|
|
|
|
</description>
|
|
|
|
<package>curl</package>
|
|
|
|
<seperate_build_arch/>
|
2024-10-15 13:37:56 +02:00
|
|
|
</patchinfo>
|