Curl_smtp_escape_eob in lib/smtp.c in curl 7.54.1 to and including curl 7.60.0 has a heap-based buffer overflow that might be exploitable by an attacker who can control the data that curl transmits over SMTP with certain settings (i.e., use of a nonstandard --limit-rate argument or CURLOPT_BUFFERSIZE value).
References
Link | Resource |
---|---|
http://www.securitytracker.com/id/1041280 | Third Party Advisory VDB Entry |
https://access.redhat.com/errata/RHSA-2018:2486 | Third Party Advisory |
https://curl.haxx.se/docs/adv_2018-70a2.html | Exploit Patch Vendor Advisory |
https://github.com/curl/curl/commit/ba1dbd78e5f1ed67c1b8d37ac89d90e5e330b628 | Patch Third Party Advisory |
https://security.gentoo.org/glsa/201807-04 | Third Party Advisory |
https://usn.ubuntu.com/3710-1/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: debian
Published: 2018-07-11T13:00:00
Updated: 2018-10-21T09:57:02
Reserved: 2017-11-27T00:00:00
Link: CVE-2018-0500
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-07-11T13:29:00.317
Modified: 2020-08-24T17:37:01.140
Link: CVE-2018-0500
JSON object: View
Redhat Information
No data.
CWE