Количество 11
Количество 11
CVE-2016-8622
The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer.
CVE-2016-8622
The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer.
CVE-2016-8622
The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer.
CVE-2016-8622
The URL percent-encoding decode function in libcurl before 7.51.0 is c ...
GHSA-xfmx-53v5-938g
The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer.
openSUSE-SU-2016:2768-1
Security update for curl
SUSE-SU-2016:2714-1
Security update for curl
SUSE-SU-2016:2699-1
Security update for curl
ELSA-2019-4652
ELSA-2019-4652: curl security update (IMPORTANT)
SUSE-SU-2017:2699-1
Security update for SLES 12 Docker image
SUSE-SU-2017:2700-1
Security update for SLES 12-SP1 Docker image
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-8622 The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer. | CVSS3: 3.7 | 2% Низкий | почти 7 лет назад |
 | CVE-2016-8622 The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer. | CVSS3: 3.7 | 2% Низкий | больше 8 лет назад |
 | CVE-2016-8622 The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer. | CVSS3: 3.7 | 2% Низкий | почти 7 лет назад |
| CVE-2016-8622 The URL percent-encoding decode function in libcurl before 7.51.0 is c ... | CVSS3: 3.7 | 2% Низкий | почти 7 лет назад |
| GHSA-xfmx-53v5-938g The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get either just truncated or both truncated and turned negative. That could then lead to libcurl writing outside of its heap based buffer. | CVSS3: 9.8 | 2% Низкий | около 3 лет назад |
 | openSUSE-SU-2016:2768-1 Security update for curl | больше 8 лет назад | ||
| SUSE-SU-2016:2714-1 Security update for curl | больше 8 лет назад | ||
| SUSE-SU-2016:2699-1 Security update for curl | больше 8 лет назад | ||
| ELSA-2019-4652 ELSA-2019-4652: curl security update (IMPORTANT) | около 6 лет назад | ||
| SUSE-SU-2017:2699-1 Security update for SLES 12 Docker image | больше 7 лет назад | ||
| SUSE-SU-2017:2700-1 Security update for SLES 12-SP1 Docker image | больше 7 лет назад |
Уязвимостей на страницу