Lucene search
SuseSUSE-SU-2016:2700-1HistoryNov 02, 2016 - 4:09 p.m.
Security update for curl (important)
2016-11-0216:09:54
lists.opensuse.org
13
0.021 Low
EPSS
Percentile
87.8%
This update for curl fixes the following issues:
- CVE-2016-8624: invalid URL parsing with ‘#’ (bsc#1005646)
- CVE-2016-8623: Use-after-free via shared cookies (bsc#1005645)
- CVE-2016-8621: curl_getdate read out of bounds (bsc#1005642)
- CVE-2016-8619: double-free in krb5 code (bsc#1005638)
- CVE-2016-8618: double-free in curl_maprintf (bsc#1005637)
- CVE-2016-8617: OOB write via unchecked multiplication (bsc#1005635)
- CVE-2016-8616: case insensitive password comparison (bsc#1005634)
- CVE-2016-8615: cookie injection for other servers (bsc#1005633)
- CVE-2016-7167: escape and unescape integer overflows (bsc#998760)
- CVE-2016-7141: Fixed incorrect reuse of client certificates with NSS not
fixed in CVE-2016-5420 (bsc#997420)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| SUSE Studio Onsite | 1.3 | x86_64 | libcurl-devel | < 7.19.7-1.20.47.2 | libcurl-devel-7.19.7-1.20.47.2.x86_64.rpm |
Related
suse
suse
Security update for curl (important)
2016-11-02 16:07:53
Security update for curl (important)
2016-11-10 17:06:47
Security update for curl (important)
2016-11-03 15:08:42
openvas
openvas
Ubuntu Update for curl USN-3123-1
2016-11-04 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2017-1036)
2020-01-23 00:00:00
openSUSE: Security Advisory for curl (openSUSE-SU-2016:2768-1)
2016-11-11 00:00:00
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS : curl vulnerabilities (USN-3123-1)
2016-11-04 00:00:00
SUSE SLES11 Security Update : curl (SUSE-SU-2016:2714-1)
2016-11-04 00:00:00
SUSE SLED12 / SLES12 Security Update : curl (SUSE-SU-2016:2699-1)
2016-11-03 00:00:00
debian
debian
[SECURITY] [DSA 3705-1] curl security update
2016-11-03 23:07:00
[SECURITY] [DLA 711-1] curl security update
2016-11-17 21:45:07
[SECURITY] [DLA 1568-1] curl security update
2018-11-06 21:01:10
cloudfoundry
cloudfoundry
USN-3123-1: curl vulnerabilities | Cloud Foundry
2016-12-13 00:00:00
ubuntu
ubuntu
curl vulnerabilities
2016-11-03 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: curl-7.47.1-9.fc24
2016-11-06 00:28:22
[SECURITY] Fedora 25 Update: curl-7.51.0-1.fc25
2016-11-19 21:51:02
[SECURITY] Fedora 25 Update: curl-7.50.3-1.fc25
2016-09-17 22:35:35
osv
osv
curl - security update
2016-11-03 00:00:00
curl - security update
2016-11-17 00:00:00
curl - security update
2018-11-06 00:00:00
amazon
amazon
Medium: curl
2016-11-10 18:00:00
Low: curl
2016-09-27 10:30:00
ibm
ibm
archlinux
archlinux
[ASA-201611-7] curl: multiple issues
2016-11-03 00:00:00
[ASA-201611-9] libcurl-gnutls: multiple issues
2016-11-03 00:00:00
[ASA-201611-8] libcurl-compat: multiple issues
2016-11-03 00:00:00
oraclelinux
oraclelinux
curl security update
2020-10-06 00:00:00
curl security update
2019-05-21 00:00:00
curl security and bug fix update
2019-07-30 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package curl version 7.51.0-alt1
2016-11-02 00:00:00
Security fix for the ALT Linux 8 package curl version 7.50.3-alt1
2016-09-14 00:00:00
freebsd
freebsd
cURL -- multiple vulnerabilities
2016-11-02 00:00:00
cURL -- Escape and unescape integer overflows
2016-09-14 00:00:00
slackware
slackware
[slackware-security] curl
2016-11-04 03:34:42
[slackware-security] curl
2016-09-16 00:31:23
myhack58
myhack58
gentoo
gentoo
cURL: Multiple vulnerabilities
2017-01-19 00:00:00
mageia
mageia
Updated curl packages fix security vulnerability
2018-01-03 19:40:26
Updated curl packages fix security vulnerability
2016-09-21 23:38:22
alpinelinux
alpinelinux
debiancve
debiancve
prion
prion
Authentication flaw
2016-10-03 21:59:00
Integer overflow
2018-08-01 06:29:00
Integer overflow
2016-10-07 14:59:00
cve
cve
ubuntucve
ubuntucve
redhat
redhat
(RHSA-2016:2575) Moderate: curl security, bug fix, and enhancement update
2016-11-03 06:07:14
(RHSA-2018:3558) Moderate: httpd24 security, bug fix, and enhancement update
2018-11-13 08:00:33
centos
centos
curl, libcurl security update
2016-11-25 15:56:44
curl, libcurl security update
2017-08-24 01:36:34
rosalinux
rosalinux
Advisory ROSA-SA-2021-1818
2021-07-02 16:36:57
ics
ics
Hitachi Energy MSM Product
2022-08-30 12:00:00
veracode
veracode
Denial Of Service (DoS)
2018-07-18 10:26:30
Denial Of Service (DoS)
2018-08-02 09:30:31
Arbitrary Code Execution
2019-01-15 09:18:26
redhatcve
redhatcve
f5
f5
K26899353 : libcurl vulnerability CVE-2016-8621
2017-04-19 00:00:00
K31411450 : cURL and libcurl vulnerability CVE-2016-8620
2017-05-02 00:00:00
K01006862 : cURL and libcurl vulnerability CVE-2016-8615
2017-04-12 00:00:00
broadcom
broadcom
BSA-2017-216
2017-03-31 00:00:00