Project

General

Profile

Bug #8038

Bug #8037: curl: IMAP FETCH response out of bounds read (CVE-2017-1000257)

[3.7] curl: IMAP FETCH response out of bounds read (CVE-2017-1000257)

Added by Alicha CH over 1 year ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Start date:
10/24/2017
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

An IMAP FETCH response line indicates the size of the returned data, in number of bytes.
When that response says the data is zero bytes, libcurl would pass on that (non-existing)
data with a pointer and the size (zero) to the deliver-data function.

Affected versions:

libcurl 7.20.0 to and including 7.56.0

Not affected versions:

libcurl < 7.20.0 and >= 7.56.1

References:

https://curl.haxx.se/docs/adv_20171023.html
http://openwall.com/lists/oss-security/2017/10/23/1

Patch:

https://curl.haxx.se/CVE-2017-1000257.patch

Associated revisions

Revision 19db43b3 (diff)
Added by Natanael Copa over 1 year ago

main/curl: security upgrade to 7.56.1 (CVE-2017-1000257)

fixes #8038

History

#1 Updated by Natanael Copa over 1 year ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH over 1 year ago

  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF