Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200512-09
https://security.gentoo.org/
Severity: Low
Title: cURL: Off-by-one errors in URL handling
Date: December 16, 2005
Bugs: #114710
ID: 200512-09
Synopsis
=======
cURL is vulnerable to local arbitrary code execution via buffer
overflow due to the insecure parsing of URLs.
Background
=========
cURL is a command line tool for transferring files with URL syntax,
supporting numerous protocols.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-misc/curl < 7.15.1 >= 7.15.1
==========
Stefan Esser from the Hardened-PHP Project has reported a vulnerability
in cURL that allows for a local buffer overflow when cU...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.