curl vulnerability

ID USN-1721-1
Type ubuntu
Reporter Ubuntu
Modified 2013-02-12T00:00:00


It was discovered that curl incorrectly handled SASL authentication when communicating over POP3, SMTP or IMAP. If a user or automated system were tricked into processing a specially crafted URL, an attacker could cause a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service.