Scientific Linux Security Update : curl on SL6.x i386/x86_64
High Nessus Plugin ID 99229
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionSecurity Fix(es) :
- It was found that the fix for CVE-2015-3148 in curl was incomplete. An application using libcurl with HTTP Negotiate authentication could incorrectly re-use credentials for subsequent requests to the same server.
SolutionUpdate the affected packages.