MiracleLinux 7 : nss-pem-1.0.3-5.el7, curl-7.29.0-51.el7 (AXSA:2019-3669:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3669:01 advisory. curl: HTTP authentication leak in redirects CVE-2018-1000007 curl: FTP path trickery leads to NIL byte out of bounds write CVE-2018-1000120 curl: RT...

RHSA-2018:3157 Red Hat Security Advisory: curl and nss-pem security and bug fix update

Bulletin has no description...

Amazon Linux 2 : nss-pem (ALAS-2019-1139)

The nss-pem package provides the PEM file reader for Network Security Services NSS implemented as a PKCS11 module. This update contains fixes related to CURL security updates, specifically updating an object ID when reusing a certificate C Tenable Network Security, Inc. The descriptive text and...

Medium: nss-pem

Issue Overview: The nss-pem package provides the PEM file reader for Network Security Services NSS implemented as a PKCS11 module. This update contains fixes related to CURL security updates, specifically updating an object ID when reusing a certificate Affected Packages: nss-pem Note: This...

Scientific Linux Security Update : curl and nss-pem on SL7.x x86_64 (20181030)

Security Fixes : - curl: HTTP authentication leak in redirects CVE-2018-1000007 - curl: FTP path trickery leads to NIL byte out of bounds write CVE-2018-1000120 - curl: RTSP RTP buffer over-read CVE-2018-1000122 - curl: Out-of-bounds heap read when missing RTSP headers allows information leak of...

CentOS 7 : curl / nss-pem (CESA-2018:3157)

An update for curl and nss-pem is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

Oracle Linux 7 : curl / and / nss-pem (ELSA-2018-3157)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3157 advisory. - fix RTSP bad headers buffer over-read CVE-2018-1000301 - fix FTP path trickery leads to NIL byte out of bounds write CVE-2018-1000120 - fix LDAP NULL...

curl and nss-pem security and bug fix update

curl 7.29.0-51 - require a new enough version of nss-pem to avoid regression in yum 1610998 7.29.0-50 - remove dead code, detected by Coverity Analysis - remove unused variable, detected by GCC and Clang 7.29.0-49 - make curl --speed-limit work with TFTP 1584750 7.29.0-48 - fix RTSP bad headers...

RHEL 7 : curl and nss-pem (RHSA-2018:3157)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3157 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTT...