21 matches found
Scientific Linux Security Update : curl on SL3.x i386/x86_64
Wesley Miaw discovered that when deflate compression was used, libcurl could call the registered write callback function with data exceeding the documented limit. A malicious server could use this flaw to crash an application using libcurl or, potentially, execute arbitrary code. Note: This issue...
Scientific Linux Security Update : curl on SL4.x i386/x86_64
Wesley Miaw discovered that when deflate compression was used, libcurl could call the registered write callback function with data exceeding the documented limit. A malicious server could use this flaw to crash an application using libcurl or, potentially, execute arbitrary code. Note: This issue...
Scientific Linux Security Update : curl on SL5.x i386/x86_64
Wesley Miaw discovered that when deflate compression was used, libcurl could call the registered write callback function with data exceeding the documented limit. A malicious server could use this flaw to crash an application using libcurl or, potentially, execute arbitrary code. Note: This issue...
HP/HPE System Management Homepage (SMH) Multiple Vulnerabilities (HPSBMU02764)
HP/HPE System Management Homepage SMH is prone to multiple vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...
[USN-1158-1] curl vulnerabilities
========================================================================== Ubuntu Security Notice USN-1158-1 June 24, 2011 curl vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...
USN-1158-1: curl vulnerabilities
Richard Silverman discovered that when doing GSSAPI authentication, libcurl unconditionally performs credential delegation, handing the server a copy of the client's security credential. CVE-2011-2192 Wesley Miaw discovered that when zlib is enabled, libcurl does not properly restrict the amount ...
VMSA-2010-0015 : VMware ESX third-party updates for Service Console
a. Service Console update for NSSdb The service console package NSSdb is updated to version nssdb-2.2-35.4.el55. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name CVE-2010-0826 to this issue. b. Service Console update for OpenLDAP The service console package...
Fedora 11 : curl-7.19.7-5.fc11 (2010-2720)
http://curl.haxx.se/docs/adv20100209.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVE...
Fedora 12 : curl-7.19.7-7.fc12 (2010-2762)
http://curl.haxx.se/docs/adv20100209.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVE...
Mac OS X 10.6.x < 10.6.4 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.6.x that is prior to 10.6.4. Mac OS X 10.6.4 contains security fixes for the following components : - CUPS - DesktopServices - Flash Player plug-in - Folder Manager - Help Viewer - iChat - ImageIO - Kerberos - Kernel - libcurl - Network...
RHEL 5 : curl (RHSA-2010:0273)
Updated curl packages that fix one security issue, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...
FreeBSD Ports: curl
The remote host is missing an update to the system as announced in the referenced advisory. VID c8c31c41-49ed-11df-83fb-0015587e2cc1 OpenVAS Vulnerability Test $ Description: Auto generated from VID c8c31c41-49ed-11df-83fb-0015587e2cc1 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Moderate: Red Hat Security Advisory: curl security, bug fix and enhancement update
Updated curl packages that fix one security issue, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...
[SECURITY] [DSA 2023-1] New curl packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-2023-1 [email protected] http://www.debian.org/security/ Steffen Joeris March 28, 2010 http://www.debian.org/security/faq -...
Fedora Update for curl FEDORA-2010-2720
Check for the Version of curl OpenVAS Vulnerability Test Fedora Update for curl FEDORA-2010-2720 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
CVE-2010-0734
contentencoding.c in libcurl 7.10.5 through 7.19.7, when zlib is enabled, does not properly restrict the amount of callback data sent to an application that requests automatic decompression, which might allow remote attackers to cause a denial of service application crash or have unspecified othe...
CVE-2010-0734
CVE-2010-0734 affects libcurl 7.10.5–7.19.7 when zlib is enabled. The defect in content_encoding.c allows a remote attacker to send crafted compressed data that bypasses the data-length limit, potentially causing an application crash (DoS) or other impact. Affected releases and the fix are docume...
Fedora Update for curl FEDORA-2010-2762
Check for the Version of curl OpenVAS Vulnerability Test Fedora Update for curl FEDORA-2010-2762 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Mandriva Update for drakxtools MDVA-2010:062 (drakxtools)
Check for the Version of drakxtools OpenVAS Vulnerability Test Mandriva Update for drakxtools MDVA-2010:062 drakxtools Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...
Mandriva Update for drakxtools MDVA-2010:062-1 (drakxtools)
Check for the Version of drakxtools OpenVAS Vulnerability Test Mandriva Update for drakxtools MDVA-2010:062-1 drakxtools Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...