AVG-370

Package curl
Status Fixed
Severity Medium
Type information disclosure
Affected 7.54.1-2
Fixed 7.55-1
Current 7.66.0-1 [core]
Ticket None
Created Wed Aug 9 07:55:49 2017
Issue Severity Remote Type Description
CVE-2017-1000101 Low No Information disclosure
A heap-based read buffer overflow has been found in curl < 7.55.0. In the globbing function that parses the numerical range, there was an omission that made...
CVE-2017-1000100 Medium Yes Information disclosure
An information disclosure issue has been found in curl < 7.55.0. When doing a TFTP transfer and curl/libcurl is given a URL that contains a very long file...
CVE-2017-1000099 Low No Information disclosure
An information disclosure issue has been found in curl < 7.55.0. When asking to get a file from a file:// URL, libcurl provides a feature that outputs...
Date Advisory Package Description
22 Aug 2017 ASA-201708-16 curl information disclosure