Univention Bugzilla – Bug 48093
curl: Multiple issues (4.3)
Last modified: 2018-11-07 14:33:47 CET
New Debian curl 7.52.1-5+deb9u8 fixes: This update addresses the following issues: * Heap-based buffer overflow via integer overflow in curl_sasl.c:Curl_sasl_create_plain_message() (CVE-2018-16839) * Heap-based buffer over-read in tool_msgs.c:voutf() allows for information disclosure and crash (CVE-2018-16842)
--- mirror/ftp/4.3/unmaintained/component/4.3-2-errata/source/curl_7.52.1-5+deb9u7.dsc +++ apt/ucs_4.3-0-errata4.3-2/source/curl_7.52.1-5+deb9u8.dsc @@ -1,3 +1,10 @@ +7.52.1-5+deb9u8 [Tue, 30 Oct 2018 21:39:11 +0000] Alessandro Ghedini <ghedo@debian.org>: + + * Fix SASL password overflow via integer overflow as per CVE-2018-16839 + https://curl.haxx.se/docs/CVE-2018-16839.html + * Fix warning message out-of-buffer read as per CVE-2018-16842 + https://curl.haxx.se/docs/CVE-2018-16842.html + 7.52.1-5+deb9u7 [Mon, 03 Sep 2018 23:50:29 +0100] Alessandro Ghedini <ghedo@debian.org>: * Fix NTLM password overflow via integer overflow as per CVE-2018-14618 <http://10.200.17.11/4.3-2/#4428784599835295281>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-2] 07d237c2d5 Bug #48093: curl 7.52.1-5+deb9u8 doc/errata/staging/curl.yaml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+)
<http://errata.software-univention.de/ucs/4.3/299.html>