Search for packages
Package details: pkg:alpm/archlinux/libcurl-gnutls@7.61.1-1
purl pkg:alpm/archlinux/libcurl-gnutls@7.61.1-1
Next non-vulnerable version 7.62.0-1
Latest non-vulnerable version 8.4.0-1
Risk 4.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-juzu-eydf-aaaa
Aliases:
CVE-2018-16840
A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.
7.62.0-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T07:46:00.713629+00:00 Arch Linux Importer Affected by VCID-juzu-eydf-aaaa https://security.archlinux.org/AVG-799 36.0.0
2024-10-20T17:34:01.581258+00:00 Arch Linux Importer Affected by VCID-juzu-eydf-aaaa https://security.archlinux.org/AVG-799 34.0.2
2024-09-18T02:01:04.294470+00:00 Arch Linux Importer Affected by VCID-juzu-eydf-aaaa https://security.archlinux.org/AVG-799 34.0.1
2024-01-31T12:09:57.046509+00:00 Arch Linux Importer Affected by VCID-juzu-eydf-aaaa https://security.archlinux.org/AVG-799 34.0.0rc2
2024-01-03T22:27:20.307455+00:00 Arch Linux Importer Affected by VCID-juzu-eydf-aaaa https://security.archlinux.org/AVG-799 34.0.0rc1