View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2018-1000122 severity moderate: SUSE including 332 source package names (0.9.1:libcurl4-7.37.0-37.17.1, 1.0.0:libcurl4-7.37.0-37.17.1, …), 441 product×package rows across 82 product lines (Container caasp/v4/default-http-backend, Container caasp/v4/dnsmasq-nanny, … (82 product lines)): Fixed 233, Known Affected 157, Known Not Affected 51.
A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage