VYPR

rpm package

suse/curl&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP3

pkg:rpm/suse/curl&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3

Vulnerabilities (1)

  • CVE-2016-0755HigJan 29, 2016
    affected < 7.19.7-1.46.1fixed 7.19.7-1.46.1

    The ConnectionExists function in lib/url.c in libcurl before 7.47.0 does not properly re-use NTLM-authenticated proxy connections, which might allow remote attackers to authenticate as other users via a request, a similar issue to CVE-2014-0015.