Project

General

Profile

Bug #8038

Bug #8037: curl: IMAP FETCH response out of bounds read (CVE-2017-1000257)

[3.7] curl: IMAP FETCH response out of bounds read (CVE-2017-1000257)

Added by Alicha CH about 1 year ago. Updated about 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Start date:
10/24/2017
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

An IMAP FETCH response line indicates the size of the returned data, in number of bytes.
When that response says the data is zero bytes, libcurl would pass on that (non-existing)
data with a pointer and the size (zero) to the deliver-data function.

Affected versions:

libcurl 7.20.0 to and including 7.56.0

Not affected versions:

libcurl < 7.20.0 and >= 7.56.1

References:

https://curl.haxx.se/docs/adv_20171023.html
http://openwall.com/lists/oss-security/2017/10/23/1

Patch:

https://curl.haxx.se/CVE-2017-1000257.patch

Associated revisions

Revision 19db43b3 (diff)
Added by Natanael Copa about 1 year ago

main/curl: security upgrade to 7.56.1 (CVE-2017-1000257)

fixes #8038

History

#1 Updated by Natanael Copa about 1 year ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH about 1 year ago

  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF