CVE-2016-8618

Опубликовано: 31 июл. 2018

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

CVSS3: 5.3

Описание

The libcurl API function called curl_maprintf() before version 7.51.0 can be tricked into doing a double-free due to an unsafe size_t multiplication, on systems using 32 bit size_t variables.

Релиз	Статус	Примечание
devel	released	7.50.1-1ubuntu2
esm-infra-legacy/trusty	not-affected	7.35.0-1ubuntu2.10
esm-infra/xenial	not-affected	7.47.0-1ubuntu2.2
precise	released	7.22.0-3ubuntu4.17
precise/esm	not-affected	7.22.0-3ubuntu4.17
trusty	released	7.35.0-1ubuntu2.10
trusty/esm	not-affected	7.35.0-1ubuntu2.10
upstream	released	7.51.0
vivid/stable-phone-overlay	ignored	end of life
vivid/ubuntu-core	released	7.38.0-3ubuntu2.4

Показывать по

Ссылки на источники

7.5 High

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2016-8618

CVSS3: 5.3

redhat

больше 8 лет назад

The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free due to an unsafe `size_t` multiplication, on systems using 32 bit `size_t` variables.

CVE-2016-8618

CVSS3: 5.3

nvd

почти 7 лет назад

The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free due to an unsafe `size_t` multiplication, on systems using 32 bit `size_t` variables.

CVE-2016-8618

CVSS3: 5.3

debian

почти 7 лет назад

The libcurl API function called `curl_maprintf()` before version 7.51. ...

GHSA-36jj-p27h-fh24

CVSS3: 9.8

github

около 3 лет назад

The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free due to an unsafe `size_t` multiplication, on systems using 32 bit `size_t` variables.

openSUSE-SU-2016:2768-1

suse-cvrf

больше 8 лет назад

Security update for curl

7.5 High

CVSS2

5.3 Medium

CVSS3

CVE-2016-8618

Описание

Пакет curl

Ссылки на источники

Связанные уязвимости