VulnerableCode Package Details - pkg:alpm/archlinux/curl@7.61.1-3

Search for packages

Vulnerability	Summary	Fixed by
VCID-juzu-eydf-aaaa Aliases: CVE-2018-16840	A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.	7.62.0-1 Affected by 0 other vulnerabilities.
VCID-uhyn-bd8d-aaak Aliases: CVE-2018-16842	Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.	7.62.0-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-juzu-eydf-aaaa
Aliases:
CVE-2018-16840

A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.

7.62.0-1
Affected by 0 other vulnerabilities.

VCID-uhyn-bd8d-aaak
Aliases:
CVE-2018-16842

Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.

7.62.0-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:00.887207+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-795	36.0.0
2025-03-28T07:46:00.863781+00:00	Arch Linux Importer	Affected by	VCID-uhyn-bd8d-aaak	https://security.archlinux.org/AVG-795	36.0.0
2024-10-20T17:34:01.635876+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-795	34.0.2
2024-10-20T17:34:01.609806+00:00	Arch Linux Importer	Affected by	VCID-uhyn-bd8d-aaak	https://security.archlinux.org/AVG-795	34.0.2
2024-09-18T02:01:04.508472+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-795	34.0.1
2024-09-18T02:01:04.481739+00:00	Arch Linux Importer	Affected by	VCID-uhyn-bd8d-aaak	https://security.archlinux.org/AVG-795	34.0.1
2024-01-31T12:09:57.221054+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-795	34.0.0rc2
2024-01-31T12:09:57.199228+00:00	Arch Linux Importer	Affected by	VCID-uhyn-bd8d-aaak	https://security.archlinux.org/AVG-795	34.0.0rc2
2024-01-03T22:27:20.497339+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-795	34.0.0rc1
2024-01-03T22:27:20.470264+00:00	Arch Linux Importer	Affected by	VCID-uhyn-bd8d-aaak	https://security.archlinux.org/AVG-795	34.0.0rc1