Skip to content
GitLab
Explore
Sign in
Register
Commits on Source (2)
CVE-2018-16840,curl: Jessie is not affected.
· 64b24959
Markus Koschany
authored
Nov 01, 2018
Vulnerable code was introduced later.
64b24959
Merge branch 'master' of salsa.debian.org:security-tracker-team/security-tracker
· 4c4be79f
Markus Koschany
authored
Nov 01, 2018
4c4be79f
Show whitespace changes
Inline
Side-by-side
data/CVE/list
View file @
4c4be79f
...
...
@@ -4944,6 +4944,7 @@ CVE-2018-16841
CVE-2018-16840 (A heap use-after-free flaw was found in curl versions from 7.59.0 ...)
- curl 7.62.0-1
[stretch] - curl <not-affected> (Use-after-free issue introduced later)
[jessie] - curl <not-affected> (Use-after-free issue introduced later)
NOTE: https://curl.haxx.se/docs/CVE-2018-16840.html
NOTE: Fixed by: https://github.com/curl/curl/commit/81d135d67155c5295b1033679c606165d4e28f3f
NOTE: Introduced by: https://github.com/curl/curl/commit/b46cfbc068ebe90f18e9777b9e877e4934c1b5e3
