[3.4] curl: Multiple issues (CVE-2016-8615, CVE-2016-8616, CVE-2016-8617, CVE-2016-8618, CVE-2016-8619, CVE-2016-8620, CVE-2016-8621 CVE-2016-8622, CVE-2016-8623, CVE-2016-8624)ID: oval:org.secpod.oval:def:1800054 | Date: (C)2018-03-28 (M)2023-11-10 |
Class: PATCH | Family: unix |
CVE-2016-8615: Cookie injection for other servers CVE-2016-8616: Case insensitive password comparison CVE-2016-8617: Out-of-bounds write via unchecked multiplication CVE-2016-8618: Double-free in curl_maprintf CVE-2016-8619: Double-free in krb5 code CVE-2016-8620: Glob parser write/read out of bounds CVE-2016-8621: curl_getdate out-of-bounds read CVE-2016-8622: URL unescape heap overflow via integer truncation CVE-2016-8623: curl: Use-after-free via shared cookies CVE-2016-8624: Invalid URL parsing with "#" Fixed In Version: curl 7.51.0
Platform: |
Alpine Linux 3.4 |