VulnerableCode Package Details - pkg:alpm/archlinux/lib32-libcurl-gnutls@7.62.0-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-juzu-eydf-aaaa	A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.	CVE-2018-16840
VCID-ygm6-kywu-aaap	Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service.	CVE-2018-16839

Vulnerability

Summary

Aliases

VCID-juzu-eydf-aaaa

A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.

CVE-2018-16840

VCID-ygm6-kywu-aaap

Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service.

CVE-2018-16839

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:00.762858+00:00	Arch Linux Importer	Fixing	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-798	36.0.0
2025-03-28T07:46:00.740929+00:00	Arch Linux Importer	Fixing	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-798	36.0.0
2024-12-11T10:54:15.511166+00:00	Arch Linux Importer	Fixing	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-798	35.0.0
2024-12-11T10:54:15.150421+00:00	Arch Linux Importer	Fixing	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-798	35.0.0
2024-09-18T02:01:04.352158+00:00	Arch Linux Importer	Fixing	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-798	34.0.1
2024-09-18T02:01:04.326690+00:00	Arch Linux Importer	Fixing	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-798	34.0.1
2024-01-31T12:09:57.094785+00:00	Arch Linux Importer	Fixing	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-798	34.0.0rc2
2024-01-31T12:09:57.072967+00:00	Arch Linux Importer	Fixing	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-798	34.0.0rc2
2024-01-03T22:27:20.354906+00:00	Arch Linux Importer	Fixing	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-798	34.0.0rc1
2024-01-03T22:27:20.333404+00:00	Arch Linux Importer	Fixing	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-798	34.0.0rc1