[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

RHSA-2017:3263-01 -- Redhat curl

ID: oval:org.secpod.oval:def:502197Date: (C)2017-12-04   (M)2023-12-20
Class: PATCHFamily: unix




The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fix: * A buffer overrun flaw was found in the IMAP handler of libcurl. By tricking an unsuspecting user into connecting to a malicious IMAP server, an attacker could exploit this flaw to potentially cause information disclosure or crash the application. Red Hat would like to thank the Curl project for reporting this issue. Upstream acknowledges Brian Carpenter and the OSS-Fuzz project as the original reporters.

Platform:
Red Hat Enterprise Linux 7
Product:
curl
libcurl
Reference:
RHSA-2017:3263-01
CVE-2017-1000257
CVE    1
CVE-2017-1000257
CPE    2
cpe:/o:redhat:enterprise_linux:7
cpe:/a:haxx:curl

© SecPod Technologies