CVE-2018-1000121 - log back

CVE-2018-1000121 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ A NULL pointer dereference exists in the LDAP code of curl >= 7.21.0 and < curl 7.59.0, allowing an attacker to cause a denial of service. libcurl-using applications that allow LDAP URLs, or that allow redirects to LDAP URLs could be made to crash by a malicious server.
References
+ https://curl.haxx.se/docs/adv_2018-97a2.html
+ https://curl.haxx.se/CVE-2018-1000121.patch
+ https://github.com/curl/curl/commit/9889db043393092e9d4b5a42720bba0b3d58deba
Notes