VulnerableCode Package Details - pkg:alpm/archlinux/lib32-libcurl-compat@7.61.1-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-juzu-eydf-aaaa Aliases: CVE-2018-16840	A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.	7.62.0-1 Affected by 0 other vulnerabilities.
VCID-ygm6-kywu-aaap Aliases: CVE-2018-16839	Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service.	7.62.0-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-juzu-eydf-aaaa
Aliases:
CVE-2018-16840

A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.

7.62.0-1
Affected by 0 other vulnerabilities.

VCID-ygm6-kywu-aaap
Aliases:
CVE-2018-16839

Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service.

7.62.0-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:00.799065+00:00	Arch Linux Importer	Affected by	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-797	36.0.0
2025-03-28T07:46:00.778352+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-797	36.0.0
2024-12-11T10:54:16.256532+00:00	Arch Linux Importer	Affected by	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-797	35.0.0
2024-12-11T10:54:15.879195+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-797	35.0.0
2024-09-18T02:01:04.402744+00:00	Arch Linux Importer	Affected by	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-797	34.0.1
2024-09-18T02:01:04.374299+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-797	34.0.1
2024-01-31T12:09:57.133887+00:00	Arch Linux Importer	Affected by	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-797	34.0.0rc2
2024-01-31T12:09:57.112162+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-797	34.0.0rc2
2024-01-03T22:27:20.395676+00:00	Arch Linux Importer	Affected by	VCID-ygm6-kywu-aaap	https://security.archlinux.org/AVG-797	34.0.0rc1
2024-01-03T22:27:20.371590+00:00	Arch Linux Importer	Affected by	VCID-juzu-eydf-aaaa	https://security.archlinux.org/AVG-797	34.0.0rc1