{"affected":[],"aliases":[],"details":"\nThis curl update fixes the following security issues:\n\n    * bnc#868627: wrong re-use of connections (CVE-2014-0138).\n    * bnc#868629: IP address wildcard certificate validation\n      (CVE-2014-0139).\n    * bnc#870444: --insecure option inappropriately enforcing security\n      safeguard.\n\nSecurity Issue references:\n\n    * CVE-2014-0138\n      <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138>\n    * CVE-2014-0139\n      <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139>\n\n","id":"SUSE-SU-2015:0962-1","modified":"2014-04-15T15:50:15Z","published":"2014-04-15T15:50:15Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20150962-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/824517"},{"type":"REPORT","url":"https://bugzilla.suse.com/849596"},{"type":"REPORT","url":"https://bugzilla.suse.com/858673"},{"type":"REPORT","url":"https://bugzilla.suse.com/868627"},{"type":"REPORT","url":"https://bugzilla.suse.com/868629"},{"type":"REPORT","url":"https://bugzilla.suse.com/870444"},{"type":"REPORT","url":"https://bugzilla.suse.com/927174"},{"type":"REPORT","url":"https://bugzilla.suse.com/927556"},{"type":"REPORT","url":"https://bugzilla.suse.com/927746"},{"type":"REPORT","url":"https://bugzilla.suse.com/928533"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2013-2174"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2013-4545"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-0015"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-0138"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-0139"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-3143"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-3148"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-3153"}],"related":["CVE-2013-2174","CVE-2013-4545","CVE-2014-0015","CVE-2014-0138","CVE-2014-0139","CVE-2015-3143","CVE-2015-3148","CVE-2015-3153"],"summary":"Security update for curl","upstream":["CVE-2013-2174","CVE-2013-4545","CVE-2014-0015","CVE-2014-0138","CVE-2014-0139","CVE-2015-3143","CVE-2015-3148","CVE-2015-3153"]}