16 matches found
EUVD-2026-39486
Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor. An attacker could present a chain that ends at an intermediate they control and have it accepted as valid. This affects the OpenSSL...
Linux Distros Unpatched Vulnerability : CVE-2026-42765
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen...
EUVD-2026-35482
Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...
CVE-2026-42765
Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...
CVE-2026-42765 NULL Dereference in Certificate Verification with OCSP Checking
Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...
CVE-2026-42765 NULL Dereference in Certificate Verification with OCSP Checking
Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...
PT-2026-47835
Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...
openSUSE: Security Advisory for curl (openSUSE-SU-2021:1762-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:1762-1 Security update for curl
This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure bsc1186114. - Allow partial chain verification jscSLE-17956 Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA...
Security update for curl (moderate)
openSUSE Security Update: Security update for curl Announcement ID: openSUSE-SU-2021:1762-1 Rating: moderate References: 1186114 SLE-17956 Cross-References: CVE-2021-22898 CVSS scores: CVE-2021-22898 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2021-22898 SUSE: 5.3...
SUSE SLES15 Security Update : curl (SUSE-SU-2021:1809-1)
This update for curl fixes the following issues : CVE-2021-22876: Fixed an issue where the automatic referer was leaking credentials bsc1183933. CVE-2021-22898: Fixed curl TELNET stack contents disclosure bsc1186114. Fix for SFTP uploads when it results in empty uploaded files bsc1177976. Allow...
SUSE-SU-2021:1809-1 Security update for curl
This update for curl fixes the following issues: - CVE-2021-22876: Fixed an issue where the automatic referer was leaking credentials bsc1183933. - CVE-2021-22898: Fixed curl TELNET stack contents disclosure bsc1186114. - Fix for SFTP uploads when it results in empty uploaded files bsc1177976. -...
OPENSUSE-SU-2021:0808-1 Security update for curl
This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure bsc1186114. - Allow partial chain verification jscSLE-17956 Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA...
SUSE SLED15 / SLES15 Security Update : curl (SUSE-SU-2021:1762-1)
This update for curl fixes the following issues : CVE-2021-22898: Fixed curl TELNET stack contents disclosure bsc1186114. Allow partial chain verification jscSLE-17956 - Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA...
SUSE-SU-2021:1763-1 Security update for curl
This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure bsc1186114. - Allow partial chain verification jscSLE-17956 Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA...
SUSE-SU-2021:1762-1 Security update for curl
This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure bsc1186114. - Allow partial chain verification jscSLE-17956 Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA...