AVG-1194 log
| Package | curl |
| Status | Fixed |
| Severity | High |
| Type | multiple issues |
| Affected | 7.70.0-1 |
| Fixed | 7.71.0-1 |
| Current | 8.11.0-3 [core] |
| Ticket | None |
| Created | Wed Jun 24 07:58:21 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-8177 | High | Yes | Arbitrary file overwrite | An issue has been found in curl from 7.20.0 upto and including 7.70.0, which can be tricked by a malicious server to overwrite a local file when using -J... |
| CVE-2020-8169 | Medium | Yes | Information disclosure | An issue has been found in libcurl from7.62.0 up to and including 7.70.0, which can be tricked to prepend a part of the password to the host name before it... |