AVG-598 log
| Package | lib32-libcurl-compat |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 7.57.0-1 |
| Fixed | 7.58.0-1 |
| Current | 8.11.0-1 [multilib] |
| Ticket | None |
| Created | Mon Jan 29 19:43:47 2018 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2018-1000007 | Medium | Yes | Information disclosure | libcurl might leak authentication data to third parties. When asked to send custom headers in its HTTP requests, libcurl will send that set of headers first... |
| CVE-2018-1000005 | Medium | Yes | Denial of service | libcurl contains an out bounds read in code handling HTTP/2 trailers. It was reported that reading an HTTP/2 trailer could mess up future trailers since the... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 29 Jan 2018 | ASA-201801-26 | lib32-libcurl-compat | multiple issues |