Test Kennung:	1.3.6.1.4.1.25623.1.0.892382
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for curl (DLA-2382-1)
Zusammenfassung:	The remote host is missing an update for the 'curl'; package(s) announced via the DLA-2382-1 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'curl' package(s) announced via the DLA-2382-1 advisory. Vulnerability Insight: An issue has been found in curl, a command line tool for transferring data with URL syntax. In rare circumstances, when using the multi API of curl in combination with CURLOPT_CONNECT_ONLY, the wrong connection might be used when transferring data later. Affected Software/OS: 'curl' package(s) on Debian Linux. Solution: For Debian 9 stretch, this problem has been fixed in version 7.52.1-5+deb9u12. We recommend that you upgrade your curl packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-8231 Debian Security Information: DSA-4881 (Google Search) https://www.debian.org/security/2021/dsa-4881 https://security.gentoo.org/glsa/202012-14 https://curl.haxx.se/docs/CVE-2020-8231.html https://hackerone.com/reports/948876 https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.