libcurl.so is vulnerable to out of bound(OOB) reads. When an IMAP FETCH response showing the size of the returned data is zero, libcurlโs deliver-data function calls the strlen
function which can lead to out of bound reads on the heap and/or crashes the application.
CPE | Name | Operator | Version |
---|---|---|---|
libcurl.so | le | 4.4.0 |