system/curl: multiple vulnerabilities
Bugzilla ID | 315 |
Alias(es) | CVE-2020-8169, CVE-2020-8177, CVE-2020-8231 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-06-24 13:46:35 -0500 |
Modified | 2020-10-25 21:27:06 -0500 |
Status | RESOLVED FIXED |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Package(s) | system/curl |
Description
CVE-2020-8169: https://www.openwall.com/lists/oss-security/2020/06/24/1
libcurl can be tricked to prepend a part of the password to the host
name before it resolves it, potentially leaking the partial password
over the network and to the DNS server(s).
Fixed in >= 7.71.0 https://github.com/curl/curl/commit/600a8cded447cd
CVE-2020-8177: https://www.openwall.com/lists/oss-security/2020/06/24/2
curl can be tricked my a malicious server to overwrite a local file
when using-J
(--remote-header-name
) and-i
(--head
) in the
same command line.
Fixed in >= 7.71.0 https://github.com/curl/curl/commit/8236aba58542c5f