Project

General

Profile

Bug #8038

Bug #8037: curl: IMAP FETCH response out of bounds read (CVE-2017-1000257)

[3.7] curl: IMAP FETCH response out of bounds read (CVE-2017-1000257)

Added by Alicha CH 12 months ago. Updated 12 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Start date:
10/24/2017
Due date:
% Done:

100%

Estimated time:
Affected versions:

Description

An IMAP FETCH response line indicates the size of the returned data, in number of bytes.
When that response says the data is zero bytes, libcurl would pass on that (non-existing)
data with a pointer and the size (zero) to the deliver-data function.

Affected versions:

libcurl 7.20.0 to and including 7.56.0

Not affected versions:

libcurl < 7.20.0 and >= 7.56.1

References:

https://curl.haxx.se/docs/adv_20171023.html
http://openwall.com/lists/oss-security/2017/10/23/1

Patch:

https://curl.haxx.se/CVE-2017-1000257.patch

Associated revisions

Revision 19db43b3 (diff)
Added by Natanael Copa 12 months ago

main/curl: security upgrade to 7.56.1 (CVE-2017-1000257)

fixes #8038

History

#1 Updated by Natanael Copa 12 months ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH 12 months ago

  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF