26 matches found
Slackware: Security Advisory (SSA:2018-192-02)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : curl (openSUSE-2019-633)
This update for curl fixes the following issues : Security issue fixed : - CVE-2018-0500: Fix a SMTP send heap buffer overflow bsc1099793. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
Photon OS 1.0: Curl PHSA-2018-1.0-0186
An update of the curl package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0186. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121889;...
Medium: curl
Issue Overview: setfilemetadata in xattr.c in GNU Wget stores a file's origin URL in the user.xdg.origin.url metadata attribute of the extended attributes of the downloaded file, which allows local users to obtain sensitive information e.g., credentials contained in the URL by reading this...
Fedora 28 : curl (2018-57779d51c1)
fix heap buffer overflow in SMTP send CVE-2018-0500 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
SUSE SLED15 / SLES15 Security Update : curl (SUSE-SU-2018:2423-1)
This update for curl fixes the following issues: Security issue fixed : - CVE-2018-0500: Fix a SMTP send heap buffer overflow bsc1099793. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatical...
Fedora Update for curl FEDORA-2018-fdc4ca8675
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for curl (openSUSE-SU-2018:2431-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for curl (moderate)
This update for curl fixes the following issues: Security issue fixed: - CVE-2018-0500: Fix a SMTP send heap buffer overflow bsc1099793. This update was imported from the SUSE:SLE-15:Update update project...
SUSE-SU-2018:2423-1 Security update for curl
This update for curl fixes the following issues: Security issue fixed: - CVE-2018-0500: Fix a SMTP send heap buffer overflow bsc1099793...
Amazon Linux 2 : curl (ALAS-2018-1052)
A heap-based buffer overflow has been found in the Curlsmtpescapeeob function of curl. An attacker could exploit this by convincing a user to use curl to upload data over SMTP with a reduced buffer to cause a crash or corrupt memory.CVE-2018-0500 C Tenable Network Security, Inc. The descriptive...
Medium: curl
Issue Overview: A heap-based buffer overflow has been found in the Curlsmtpescapeeob function of curl. An attacker could exploit this by convincing a user to use curl to upload data over SMTP with a reduced buffer to cause a crash or corrupt memory.CVE-2018-0500 Affected Packages: curl Note: This...
GLSA-201807-04 : cURL: Heap-based buffer overflow
The remote host is affected by the vulnerability described in GLSA-201807-04 cURL: Heap-based buffer overflow A heap-based buffer overflow was discovered in cURLs Curlsmtpescapeeob function. Impact : An attacker could cause a Denial of Service condition or execute arbitrary code via SMTP...
FreeBSD : curl -- SMTP send heap buffer overflow (3849e28f-8693-11e8-9610-9c5c8e75236a)
Peter Wu reports : curl might overflow a heap based memory buffer when sending data over SMTP and using a reduced read buffer. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques Vidri...
Fedora Update for curl FEDORA-2018-57779d51c1
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security fix for the ALT Linux 8 package curl version 7.61.0-alt1
July 17, 2018 Anton Farygin 7.61.0-alt1 - 7.61.0 - fixes: CVE-2018-0500 SMTP send heap buffer overflow...
[ASA-201807-10] curl: arbitrary code execution
Arch Linux Security Advisory ASA-201807-10 ========================================== Severity: High Date : 2018-07-16 CVE-ID : CVE-2018-0500 Package : curl Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-729 Summary ======= The package curl before version...
[ASA-201807-8] libcurl-compat: arbitrary code execution
Arch Linux Security Advisory ASA-201807-8 ========================================= Severity: High Date : 2018-07-16 CVE-ID : CVE-2018-0500 Package : libcurl-compat Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-733 Summary ======= The package libcurl-compa...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/curl-7.61.0-i586-1slack14.2.txz: Upgraded. This update fixes a buffer overflow in SMTP send. For more information, see:...
Slackware 14.0 / 14.1 / 14.2 / current : curl (SSA:2018-192-02)
New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-192-02. The text itself is copyright C Slackware Linux...