Lucene search
RedHatRHSA-2020:5417HistoryDec 15, 2020 - 8:07 a.m.
(RHSA-2020:5417) Moderate: curl security and bug fix update
2020-12-1508:07:44
access.redhat.com
47
0.001 Low
EPSS
Percentile
41.4%
The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.
Security Fix(es):
- curl: Incorrect argument check can allow remote servers to overwrite local files (CVE-2020-8177)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- libcurl: Segfault when HTTPS_PROXY and NO_PROXY is used together (BZ#1900103)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | i686 | libcurl-minimal-debuginfo | < 7.61.1-12.el8_2.2 | libcurl-minimal-debuginfo-7.61.1-12.el8_2.2.i686.rpm |
| RedHat | 8 | i686 | libcurl-minimal | < 7.61.1-12.el8_2.2 | libcurl-minimal-7.61.1-12.el8_2.2.i686.rpm |
| RedHat | 8 | s390x | curl-debuginfo | < 7.61.1-12.el8_2.2 | curl-debuginfo-7.61.1-12.el8_2.2.s390x.rpm |
| RedHat | 8 | s390x | libcurl-debuginfo | < 7.61.1-12.el8_2.2 | libcurl-debuginfo-7.61.1-12.el8_2.2.s390x.rpm |
| RedHat | 8 | aarch64 | libcurl-devel | < 7.61.1-12.el8_2.2 | libcurl-devel-7.61.1-12.el8_2.2.aarch64.rpm |
| RedHat | 8 | i686 | libcurl | < 7.61.1-12.el8_2.2 | libcurl-7.61.1-12.el8_2.2.i686.rpm |
| RedHat | 8 | aarch64 | curl-debugsource | < 7.61.1-12.el8_2.2 | curl-debugsource-7.61.1-12.el8_2.2.aarch64.rpm |
| RedHat | 8 | ppc64le | libcurl | < 7.61.1-12.el8_2.2 | libcurl-7.61.1-12.el8_2.2.ppc64le.rpm |
| RedHat | 8 | x86_64 | curl-debugsource | < 7.61.1-12.el8_2.2 | curl-debugsource-7.61.1-12.el8_2.2.x86_64.rpm |
| RedHat | 8 | s390x | libcurl-devel | < 7.61.1-12.el8_2.2 | libcurl-devel-7.61.1-12.el8_2.2.s390x.rpm |
Related
openvas
openvas
openSUSE: Security Advisory for curl (openSUSE-SU-2020:0908-1)
2020-06-30 00:00:00
Debian: Security Advisory (DLA-2295-1)
2020-07-29 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2020-1907)
2020-08-31 00:00:00
nessus
nessus
SUSE SLES12 Security Update : curl (SUSE-SU-2020:1732-1)
2020-07-09 00:00:00
Virtuozzo 7 : curl / libcurl / libcurl-devel (VZLSA-2020-5002)
2020-12-18 00:00:00
NewStart CGSL MAIN 6.02 : curl Vulnerability (NS-SA-2021-0067)
2021-03-10 00:00:00
amazon
amazon
Medium: curl
2020-07-14 02:30:00
Medium: curl
2020-07-28 17:21:00
redhat
redhat
(RHSA-2020:4599) Moderate: curl security and bug fix update
2020-11-03 12:19:12
(RHSA-2020:5002) Moderate: curl security update
2020-11-10 09:37:34
cve
cve
CVE-2020-8177
2020-12-14 20:15:13
debiancve
debiancve
CVE-2020-8177
2020-12-14 20:15:13
hackerone
hackerone
curl: curl overwrite local file with -J
2020-05-30 13:08:39
ubuntucve
ubuntucve
CVE-2020-8177
2020-06-24 00:00:00
nvd
nvd
CVE-2020-8177
2020-12-14 20:15:13
cvelist
cvelist
CVE-2020-8177
2020-12-14 19:42:16
osv
osv
curl - security update
2020-07-28 00:00:00
CVE-2020-8177
2020-12-14 20:15:13
curl - security update
2021-03-30 00:00:00
suse
suse
Security update for curl (important)
2020-06-30 00:00:00
Security update for curl (important)
2020-06-28 00:00:00
veracode
veracode
Arbitrary File Overwrite
2020-06-25 05:16:51
cbl_mariner
cbl_mariner
CVE-2020-8177 affecting package curl 7.68.0-5
2021-01-11 21:49:35
f5
f5
K000133094 : cURL vulnerability CVE-2020-8177
2023-03-21 00:00:00
prion
prion
Input validation
2020-12-14 20:15:00
redhatcve
redhatcve
CVE-2020-8177
2020-06-26 13:50:53
debian
debian
[SECURITY] [DLA 2295-1] curl security update
2020-07-28 20:29:35
[SECURITY] [DSA 4881-1] curl security update
2021-03-31 09:30:31
alpinelinux
alpinelinux
CVE-2020-8177
2020-12-14 20:15:13
oraclelinux
oraclelinux
curl security and bug fix update
2020-11-10 00:00:00
curl security update
2020-11-12 00:00:00
centos
centos
curl, libcurl security update
2020-11-18 17:30:30
fedora
fedora
[SECURITY] Fedora 32 Update: mingw-curl-7.71.1-1.fc32
2020-08-05 01:20:49
[SECURITY] Fedora 32 Update: curl-7.69.1-4.fc32
2020-06-27 02:08:07
[SECURITY] Fedora 31 Update: curl-7.66.0-2.fc31
2020-07-10 01:01:54
ibm
ibm
gentoo
gentoo
cURL: Multiple vulnerabilities
2020-07-26 00:00:00
cloudfoundry
cloudfoundry
USN-4402-1: curl vulnerabilities | Cloud Foundry
2020-07-22 00:00:00
freebsd
freebsd
curl -- multiple vulnerabilities
2020-06-24 00:00:00
slackware
slackware
[slackware-security] curl
2020-06-24 20:40:25
photon
photon
Important Photon OS Security Update - PHSA-2020-0106
2020-06-25 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0255
2020-06-26 00:00:00
Important Photon OS Security Update - PHSA-2020-0255
2020-06-26 00:00:00
ubuntu
ubuntu
curl vulnerabilities
2020-06-24 00:00:00
mageia
mageia
Updated curl packages fix security vulnerability
2020-07-05 22:48:23
ics
ics
Siemens SINEC INS
2022-03-10 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00