Security update for curl SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2021:0808-1 Final 1 1 2021-05-29T16:05:16Z current 2021-05-29T16:05:16Z 2021-05-29T16:05:16Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for curl This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Allow partial chain verification [jsc#SLE-17956] * Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA certificates are. This allows users to verify servers using the intermediate cert only, instead of needing the whole chain. * Set FLAG_TRUSTED_FIRST unconditionally. * Do not check partial chains with CRL check. This update was imported from the SUSE:SLE-15-SP2:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2021-808 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3ES6AKURDGLC4PDCDFLHOPWYDQA55NHQ/ E-Mail link for openSUSE-SU-2021:0808-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1186114 SUSE Bug 1186114 https://www.suse.com/security/cve/CVE-2021-22898/ SUSE CVE CVE-2021-22898 page openSUSE Leap 15.2 curl-7.66.0-lp152.3.18.1 curl-mini-7.66.0-lp152.3.18.1 libcurl-devel-7.66.0-lp152.3.18.1 libcurl-devel-32bit-7.66.0-lp152.3.18.1 libcurl-mini-devel-7.66.0-lp152.3.18.1 libcurl4-7.66.0-lp152.3.18.1 libcurl4-32bit-7.66.0-lp152.3.18.1 libcurl4-mini-7.66.0-lp152.3.18.1 curl-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 curl-mini-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 libcurl-devel-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 libcurl-devel-32bit-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 libcurl-mini-devel-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 libcurl4-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 libcurl4-32bit-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 libcurl4-mini-7.66.0-lp152.3.18.1 as a component of openSUSE Leap 15.2 curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option, known as `CURLOPT_TELNETOPTIONS` in libcurl, is used to send variable=content pairs to TELNET servers. Due to a flaw in the option parser for sending NEW_ENV variables, libcurl could be made to pass on uninitialized data from a stack based buffer to the server, resulting in potentially revealing sensitive internal information to the server using a clear-text network protocol. CVE-2021-22898 openSUSE Leap 15.2:curl-7.66.0-lp152.3.18.1 openSUSE Leap 15.2:curl-mini-7.66.0-lp152.3.18.1 openSUSE Leap 15.2:libcurl-devel-32bit-7.66.0-lp152.3.18.1 openSUSE Leap 15.2:libcurl-devel-7.66.0-lp152.3.18.1 openSUSE Leap 15.2:libcurl-mini-devel-7.66.0-lp152.3.18.1 openSUSE Leap 15.2:libcurl4-32bit-7.66.0-lp152.3.18.1 openSUSE Leap 15.2:libcurl4-7.66.0-lp152.3.18.1 openSUSE Leap 15.2:libcurl4-mini-7.66.0-lp152.3.18.1 moderate 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3ES6AKURDGLC4PDCDFLHOPWYDQA55NHQ/ https://www.suse.com/security/cve/CVE-2021-22898.html CVE-2021-22898 https://bugzilla.suse.com/1186114 SUSE Bug 1186114 https://bugzilla.suse.com/1192450 SUSE Bug 1192450