FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

curl -- Credentials not checked

Affected packages
7.10.0 <= curl < 7.47.0
7.10.0 <= linux-c6-curl
7.10.0 <= linux-c6_64-curl
0 <= linux-f10-curl


VuXML ID 8b27f1bc-c509-11e5-a95f-b499baebfeaf
Discovery 2016-01-27
Entry 2016-01-27
Modified 2016-02-02

The cURL project reports:

libcurl will reuse NTLM-authenticated proxy connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer.


CVE Name CVE-2016-0755