libcurl contains a buffer overrun flaw in the NTLM authentication code (CVE-2017-8816). libcurl contains a read out of bounds flaw in the FTP wildcard function (CVE-2017-8817). libcurl may read outside of a heap allocated buffer when doing FTP (CVE-2017-1000254). libcurl contains a buffer overrun flaw in the IMAP handler (CVE-2017-1000257).

OSVersionArchitecturePackageVersionFilename
Mageia6noarchcurl< 7.54.1-2.4curl-7.54.1-2.4.mga6

OS	Version	Architecture	Package	Version	Filename
Mageia	6	noarch	curl	< 7.54.1-2.4	curl-7.54.1-2.4.mga6

References

bugs.mageia.org/show_bug.cgi?id=21819

curl.haxx.se/docs/adv_2017-12e7.html

curl.haxx.se/docs/adv_2017-ae72.html

curl.haxx.se/docs/adv_20171004.html

curl.haxx.se/docs/adv_20171023.html

openvas 36

gentoo 1

nessus 51

debian 5

fedora 9

osv 10

amazon 5

ubuntu 4

cloudfoundry 2

ibm 12

freebsd 3

archlinux 13

altlinux 3

slackware 3

oraclelinux 1

redhat 1

cvelist 5

veracode 5

alpinelinux 4

ubuntucve 4

cve 5

debiancve 4

redhatcve 5

centos 1

prion 4

hackerone 1

photon 2

openvas

Mageia: Security Advisory (MGASA-2018-0054)

2022-01-28 00:00:00

SUSE: Security Advisory (SUSE-SU-2017:2831-1)

2021-04-19 00:00:00

Debian: Security Advisory (DSA-4051-1)

2017-11-28 00:00:00

gentoo

cURL: Multiple vulnerabilities

2017-12-14 00:00:00

nessus

GLSA-201712-04 : cURL: Multiple vulnerabilities

2017-12-15 00:00:00

SUSE SLED12 / SLES12 Security Update : curl (SUSE-SU-2017:2831-1)

2017-10-24 00:00:00

openSUSE Security Update : curl (openSUSE-2017-1200)

2017-10-30 00:00:00

debian

[SECURITY] [DSA 4051-1] curl security update

2017-11-29 11:09:32

[SECURITY] [DLA 1121-1] curl security update

2017-10-05 09:39:19

[SECURITY] [DSA 4007-1] curl security update

2017-10-27 20:22:03

fedora

[SECURITY] Fedora 27 Update: curl-7.55.1-8.fc27

2017-12-10 05:11:43

[SECURITY] Fedora 26 Update: curl-7.53.1-13.fc26

2017-12-09 22:30:25

[SECURITY] Fedora 27 Update: curl-7.55.1-6.fc27

2017-11-11 03:23:12

osv

curl - security update

2017-11-29 00:00:00

curl - security update

2017-10-05 00:00:00

curl - security update

2017-10-24 00:00:00

amazon

Medium: curl

2018-01-03 08:22:00

Medium: curl

2019-02-16 00:34:00

Medium: curl

2017-11-15 19:54:00

ubuntu

curl vulnerabilities

2017-11-29 00:00:00

curl vulnerability

2017-10-23 00:00:00

curl vulnerability

2017-12-04 00:00:00

cloudfoundry

USN-3498-1: curl vulnerabilities | Cloud Foundry

2017-12-14 00:00:00

USN-3457-1: curl vulnerability | Cloud Foundry

2017-11-27 00:00:00

ibm

Security Bulletin: Vulnerabilities in cURL component shipped with IBM Rational ClearCase (CVE-2017-1000100, CVE-2017-1000254, CVE-2017-1000257)

2018-07-10 08:34:12

Security Bulletin: Vulnerabilities in cURL/libcurl affect Intel® Manycore Platform Software Stack (Intel® MPSS) for Linux and Windows

2019-01-31 02:40:01

Security Bulletin: Vulnerabilities in cURL affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru (CVE-2017-8816 CVE-2017-8817 CVE-2017-8818)

2019-01-31 02:40:01

freebsd

cURL -- Multiple vulnerabilities

2017-11-29 00:00:00

cURL -- out of bounds read

2017-10-04 00:00:00

cURL -- out of bounds read

2017-10-23 00:00:00

archlinux

[ASA-201711-38] lib32-libcurl-compat: multiple issues

2017-11-30 00:00:00

[ASA-201711-36] lib32-curl: multiple issues

2017-11-30 00:00:00

[ASA-201711-37] lib32-libcurl-gnutls: multiple issues

2017-11-30 00:00:00

altlinux

Security fix for the ALT Linux 8 package curl version 7.57.0-alt1

2017-12-01 00:00:00

Security fix for the ALT Linux 8 package curl version 7.56.1-alt1

2017-10-23 00:00:00

Security fix for the ALT Linux 8 package curl version 7.56.0-alt1

2017-10-04 00:00:00

slackware

[slackware-security] curl

2017-11-29 22:40:18

[slackware-security] curl

2017-10-06 06:33:52

[slackware-security] curl

2017-10-24 05:55:47

oraclelinux

curl security update

2017-11-27 00:00:00

redhat

(RHSA-2017:3263) Moderate: curl security update

2017-11-27 13:58:28

cvelist

CVE-2017-1000254

2017-10-06 13:00:00

CVE-2017-1000257

2017-10-31 21:00:00

CVE-2017-8817

2017-11-29 18:00:00

veracode

Out Of Bound Reads (OOB)

2019-01-15 09:21:02

Out Of Bound Reads (OOB)

2018-06-01 07:38:16

Out-Of-Bounds Read

2019-05-16 03:21:39

alpinelinux

CVE-2017-1000257

2017-10-31 21:29:00

CVE-2017-1000254

2017-10-06 13:29:00

CVE-2017-8817

2017-11-29 18:29:00

ubuntucve

CVE-2017-1000254

2017-10-04 00:00:00

CVE-2017-1000257

2017-10-23 00:00:00

CVE-2017-8817

2017-11-29 00:00:00

cve

CVE-2017-1000254

2017-10-06 13:29:00

CVE-2017-8817

2017-11-29 18:29:00

CVE-2017-1000257

2017-10-31 21:29:00

debiancve

CVE-2017-1000254

2017-10-06 13:29:00

CVE-2017-1000257

2017-10-31 21:29:00

CVE-2017-8817

2017-11-29 18:29:00

redhatcve

CVE-2017-1000257

2017-10-23 06:19:18

CVE-2017-1000254

2019-10-10 10:51:19

CVE-2017-8817

2017-11-29 11:19:57

centos

curl, libcurl security update

2017-11-27 18:26:45

prion

Heap overflow

2017-10-31 21:29:00

Heap overflow

2017-10-06 13:29:00

Out-of-bounds

2017-11-29 18:29:00

hackerone

Internet Bug Bounty: Out of bounds read in libcurl's IMAP FETCH response parser

2017-10-17 16:41:52

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0108

2018-02-14 00:00:00

Critical Photon OS Security Update - PHSA-2018-0108

2018-02-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

0.037 Low

EPSS

Percentile

91.7%

JSON

Related for MGASA-2018-0054