Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2020-8169 - log back

CVE-2020-8169 edited at 24 Jun 2020 08:02:13

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Information disclosure

Description

+	An issue has been found in libcurl from7.62.0 up to and including 7.70.0, which can be tricked to prepend a part of the password to the host name before it resolves it, potentially leaking the partial password over the network and to the DNS server(s).

References

+	https://curl.haxx.se/docs/CVE-2020-8169.html

Notes

CVE-2020-8169 created at 24 Jun 2020 07:58:21