Zwei Probleme in curl
ID: | FEDORA-2018-fa01002d7e |
Distribution: | Fedora |
Plattformen: | Fedora 28 |
Datum: | Di, 22. Mai 2018, 23:12 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000300
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000301 |
Applikationen: | curl |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2018-fa01002d7e 2018-05-22 15:05:44.979660 -------------------------------------------------------------------------------- Name : curl Product : Fedora 28 Version : 7.59.0 Release : 3.fc28 URL : https://curl.haxx.se/ Summary : A utility for getting files from remote servers (FTP, HTTP, and others) Description : curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a busload of other useful tricks. -------------------------------------------------------------------------------- Update Information: - fix FTP shutdown response buffer overflow (CVE-2018-1000300) - fix RTSP bad headers buffer over-read (CVE-2018-1000301) -------------------------------------------------------------------------------- ChangeLog: * Fri May 18 2018 Kamil Dudka |