Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2018-16842

Опубликовано: 31 окт. 2018
Источник: debian

Описание

Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
curlfixed7.62.0-1package

Примечания

  • https://curl.haxx.se/docs/CVE-2018-16842.html

  • Fixed by: https://github.com/curl/curl/commit/d530e92f59ae9bb2d47066c3c460b25d2ffeb211

Связанные уязвимости

ubuntu логотип

CVE-2018-16842

CVSS3: 4.4
ubuntu
больше 7 лет назад

Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.

redhat логотип

CVE-2018-16842

CVSS3: 3.6
redhat
больше 7 лет назад

Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.

nvd логотип

CVE-2018-16842

CVSS3: 4.4
nvd
больше 7 лет назад

Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.

github логотип

GHSA-wh7w-vjg6-xh6h

CVSS3: 9.1
github
больше 3 лет назад

Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.

oracle-oval логотип

ELSA-2019-2181

oracle-oval
больше 6 лет назад

ELSA-2019-2181: curl security and bug fix update (LOW)