CLSA-2026-1779372929 curl: Fix of CVE-2026-7168

CVE-2026-7168: clear proxy Digest auth state when CURLOPTPROXY is reassigned to a different proxy host on the same easy handle so a stale Proxy-Authorization header is not replayed to the new proxy...

CLSA-2026-1779357393 curl: Fix of CVE-2026-5773

CVE-2026-5773: disable connection reuse for SMBS to prevent libcurl from reusing a connection to the same server for a different SMB share...

CLSA-2026-1778890582 curl: Fix of CVE-2026-5545

CVE-2026-5545: wrong reuse of HTTP Negotiate connection; only allow an existing connection to be reused and "upgraded" to NTLM when neither NTLM nor Negotiate authentication is in flight on it...

CLSA-2026-1777463593 curl: Fix of CVE-2023-27533

CVE-2023-27533: telnet: only accept option arguments in ascii...

curl: Fix of CVE-2026-3784

CVE-2026-3784: fix proxy connection reuse with different credentials - update outdated timestamps in test 046...

CLSA-2026-1774276586 curl: Fix of CVE-2026-3784

CVE-2026-3784: fix proxy connection reuse with different credentials - update outdated timestamps in test 046...

CLSA-2026-1774273500 curl: Fix of CVE-2026-3784

CVE-2026-3784: fix proxy connection reuse with different credentials - update outdated timestamps in test 046...

CLSA-2026-1773653586 curl: Fix of CVE-2025-15224

CVE-2025-15224: fix libssh public-key auth fallback to SSH agent...

CLSA-2026-1769092364 curl: Fix of CVE-2025-9086

CVE-2025-9086: cookie: don't treat the leading slash as trailing...

CLSA-2026-1767808644 curl: Fix of CVE-2025-9086

CVE-2025-9086: cookie: don't treat the leading slash as trailing...

SUSE SLES15 Security Update : qemu (SUSE-SU-2026:0039-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0039-1 advisory. - CVE-2024-6505: qemu-kvm: virtio-net: Fixed queue index out-of-bounds access in software RSS bsc1227397 - CVE-2025-12464: net: pad...

Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be exploited by a malicious guest user to crash the QEMU process on the host bsc1253002. CVE-2025-11234: use-after-free in WebSocket...

CLSA-2025-1767083454 curl: Fix of CVE-2025-0167

CVE-2025-0167: fix password leaking when the netrc file has a default entry that omits both login and password...

CLSA-2025-1764773365 curl: Fix of CVE-2024-9681

CVE-2024-9681: improve HSTS subdomain handling to prevent incorrectly overriding parent domain entries...

CLSA-2025-1750785256 curl: Fix of CVE-2024-7264

CVE-2024-7264: fix out-of-bound read in GTime2str function...

CLSA-2024-1716882786 curl: Fix of CVE-2023-46218

CVE-2023-46218: fix cookie validation to prevent passing cookies to unrelated sites...

CLSA-2024-1712837675 curl: Fix of CVE-2024-2398

CVE-2024-2398: Fix memory leak when aborting server push due to exceeding header limit...

CLSA-2024-1712672178 curl: Fix of CVE-2024-2398

CVE-2024-2398: http2: push headers better cleanup...

CLSA-2024-1712672068 curl: Fix of CVE-2023-46218

CVE-2023-46218: lowercase the domain names before PSL checks - Add verify cookie PSL mixed case test...

CLSA-2023-1697465582 curl: Fix of CVE-2023-38546

CVE-2023-38546: cookie: remove unnecessary struct fields...