stable

curl-7.61.1-4.fc29

FEDORA-2018-7785911c9e created by kdudka 5 years ago for Fedora 29
  • SASL password overflow via integer overflow (CVE-2018-16839)
  • fix use-after-free in handle close (CVE-2018-16840)
  • fix bad arethmetic when outputting warnings to stderr (CVE-2018-16842)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2018-7785911c9e

This update has been submitted for testing by kdudka.

5 years ago
User Icon lnie commented & provided feedback 5 years ago
karma

works as usual

This update has been pushed to testing.

5 years ago
User Icon besser82 commented & provided feedback 5 years ago
karma

Works great! LGTM! =)

User Icon pwalter commented & provided feedback 5 years ago
karma

Works

This update has been submitted for batched by bodhi.

5 years ago
User Icon kdudka commented & provided feedback 5 years ago

Thank you for testing the update!

User Icon nomos commented & provided feedback 5 years ago
karma

Tested on local machine.

This update has been submitted for stable by bodhi.

5 years ago

This update has been pushed to stable.

5 years ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
4
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago
BZ#1644552 CVE-2018-16839 curl: Heap-based buffer overflow via integer overflow in curl_sasl.c:Curl_sasl_create_plain_message() [fedora-all]
0
0
BZ#1644555 CVE-2018-16840 curl: Use-after-free when closing and cleaning "easy" handle in Curl_close() [fedora-all]
0
0
BZ#1644558 CVE-2018-16842 curl: Heap-based buffer over-read in the curl tool warning formatting [fedora-all]
0
0

Automated Test Results