VulnerableCode Package Details - pkg:conan/libcurl@7.29.0

Search for packages

Package details: pkg:conan/libcurl@7.29.0

purl	pkg:conan/libcurl@7.29.0
Tags	Ghost

Next non-vulnerable version	8.12.1
Latest non-vulnerable version	8.12.1
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-njss-xaxg-aaab Aliases: CVE-2020-8231	Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.	7.72.0 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 7.77.0 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-njss-xaxg-aaab
Aliases:
CVE-2020-8231

Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.

7.72.0
Affected by 8 other vulnerabilities.

7.77.0
Affected by 4 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2024-09-17T22:47:59.600358+00:00	GitLab Importer	Affected by	VCID-njss-xaxg-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/libcurl/CVE-2020-8231.yml	34.0.1
2024-01-03T18:09:04.183653+00:00	GitLab Importer	Affected by	VCID-njss-xaxg-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/libcurl/CVE-2020-8231.yml	34.0.0rc1