FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

curl -- SMTP send heap buffer overflow

Affected packages
7.54.1	<=	curl	<	7.61.0

Details

VuXML ID	3849e28f-8693-11e8-9610-9c5c8e75236a
Discovery	2018-07-11
Entry	2018-07-27
Modified	2018-07-28

Peter Wu reports:

curl might overflow a heap based memory buffer when sending data over SMTP and using a reduced read buffer.

[source]

References

CVE Name	CVE-2018-0500
URL	https://curl.haxx.se/docs/adv_2018-70a2.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.