Lucene search
GoogleOSV:CVE-2016-8621HistoryJul 31, 2018 - 10:29 p.m.
CVE-2016-8621
2018-07-3122:29:00
Google
osv.dev
12
0.004 Low
EPSS
Percentile
72.7%
The curl_getdate function in curl before version 7.51.0 is vulnerable to an out of bounds read if it receives an input with one digit short.
| CPE | Name | Operator | Version |
|---|---|---|---|
| curl | eq | 7.28.0-r0 | |
| curl | eq | 7.21.1-r0 | |
| curl | eq | curl-7_19_6 | |
| curl | eq | before_urldata_rename | |
| curl | eq | 7.47.0-r0 | |
| curl | eq | 7.49.1-r2 | |
| curl | eq | curl-7_9_7 | |
| curl | eq | 7.28.1-r0 | |
| curl | eq | curl-7_16_0 | |
| curl | eq | curl-7_45_0 |
References
www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
www.securityfocus.com/bid/94101
www.securitytracker.com/id/1037192
access.redhat.com/errata/RHSA-2018:2486
access.redhat.com/errata/RHSA-2018:3558
bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621
curl.haxx.se/CVE-2016-8621.patch
curl.haxx.se/docs/adv_20161102G.html
security.gentoo.org/glsa/201701-47
www.tenable.com/security/tns-2016-21
Related
cve
cve
CVE-2016-8621
2018-07-31 22:29:00
nvd
nvd
CVE-2016-8621
2018-07-31 22:29:00
prion
prion
Out-of-bounds
2018-07-31 22:29:00
f5
f5
K26899353 : libcurl vulnerability CVE-2016-8621
2017-04-19 00:00:00
cvelist
cvelist
CVE-2016-8621
2018-07-31 22:00:00
ubuntucve
ubuntucve
CVE-2016-8621
2016-11-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-07-18 10:26:30
alpinelinux
alpinelinux
CVE-2016-8621
2018-07-31 22:29:00
debiancve
debiancve
CVE-2016-8621
2018-07-31 22:29:00
nessus
nessus
F5 Networks BIG-IP : libcurl vulnerability (K26899353)
2017-12-26 00:00:00
Oracle Linux 6 / 7 : curl (ELSA-2019-4652)
2019-05-24 00:00:00
Debian DLA-711-1 : curl security update
2016-11-18 00:00:00
redhatcve
redhatcve
CVE-2016-8621
2016-11-02 08:47:51
ibm
ibm
openvas
openvas
IBM Tivoli Endpoint Manager Multiple Vulnerabilities (Aug 2017)
2017-08-03 00:00:00
Debian: Security Advisory (DLA-711-1)
2023-03-08 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2017-1036)
2020-01-23 00:00:00
archlinux
archlinux
[ASA-201611-9] libcurl-gnutls: multiple issues
2016-11-03 00:00:00
[ASA-201611-10] lib32-libcurl-gnutls: multiple issues
2016-11-03 00:00:00
[ASA-201611-4] lib32-curl: multiple issues
2016-11-02 00:00:00
debian
debian
[SECURITY] [DLA 711-1] curl security update
2016-11-17 21:45:07
[SECURITY] [DSA 3705-1] curl security update
2016-11-03 23:07:00
oraclelinux
oraclelinux
curl security update
2020-10-06 00:00:00
curl security and bug fix update
2019-07-30 00:00:00
curl security update
2020-11-12 00:00:00
osv
osv
curl - security update
2016-11-17 00:00:00
curl - security update
2016-11-03 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: curl-7.51.0-1.fc25
2016-11-19 21:51:02
[SECURITY] Fedora 24 Update: curl-7.47.1-9.fc24
2016-11-06 00:28:22
amazon
amazon
Medium: curl
2016-11-10 18:00:00
suse
suse
Security update for curl (important)
2016-11-02 16:07:53
Security update for curl (important)
2016-11-03 15:08:42
Security update for curl (important)
2016-11-10 17:06:47
slackware
slackware
[slackware-security] curl
2016-11-04 03:34:42
freebsd
freebsd
cURL -- multiple vulnerabilities
2016-11-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package curl version 7.51.0-alt1
2016-11-02 00:00:00
cloudfoundry
cloudfoundry
USN-3123-1: curl vulnerabilities | Cloud Foundry
2016-12-13 00:00:00
ubuntu
ubuntu
curl vulnerabilities
2016-11-03 00:00:00
ics
ics
Hitachi Energy MSM Product
2022-08-30 12:00:00
mageia
mageia
Updated curl packages fix security vulnerability
2018-01-03 19:40:26
rosalinux
rosalinux
Advisory ROSA-SA-2021-1818
2021-07-02 16:36:57
gentoo
gentoo
cURL: Multiple vulnerabilities
2017-01-19 00:00:00
redhat
redhat
apple
apple
oracle
oracle
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00
Oracle Critical Patch Update Advisory - April 2017
2017-04-18 00:00:00