Security update for curl
This update for curl fixes several issues:
Security issues fixed:
- CVE-2018-1000301: Fixed a RTSP bad headers buffer over-read could crash the curl client (bsc#1092098)
Non security issues fixed:
- If the DEFAULT_SUSE cipher list is not available use the HIGH cipher alias before failing.
(bsc#1086825)
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Pedro Monreal Gonzalez (pmonrealgonzalez)
Fixed bugs
bnc#1092098
VUL-0: CVE-2018-1000301: curl: RTSP bad headers buffer over-read
bnc#1086825
curl - softer cipher selection that DEFAULT_SUSE or FAIL
