CVE-2023-38545 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	Yes
Type	Arbitrary code execution
Description	A heap-based buffer overflow has been found in the SOCKS5 proxy handshake component of cURL before 8.4.0.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2846	lib32-curl, lib32-libcurl-compat, lib32-libcurl-gnutls	8.3.0-1	8.4.0-1	High	Fixed
AVG-2845	curl, libcurl-compat, libcurl-gnutls	8.3.0-1	8.4.0-1	High	Fixed

References
https://curl.se/docs/CVE-2023-38545.html https://github.com/curl/curl/commit/fb4415d8aee6c1