FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Vulnerabilities in Curl

Affected packages
7.32.0 <= curl < 7.50.1

Details

VuXML ID e4bc70fc-5a2f-11e6-a1bc-589cfc0654e1
Discovery 2016-08-03
Entry 2016-08-04

Curl security team reports:

CVE-2016-5419 - TLS session resumption client cert bypass

CVE-2016-5420 - Re-using connections with wrong client cert

CVE-2016-5421 - use of connection struct after free

References

CVE Name CVE-2016-5419
CVE Name CVE-2016-5420
CVE Name CVE-2016-5421
URL https://curl.haxx.se/docs/adv_20160803A.html
URL https://curl.haxx.se/docs/adv_20160803B.html
URL https://curl.haxx.se/docs/adv_20160803C.html