Advisories » MGASA-2015-0263

Updated curl package fixes security vulnerability

Publication date: 05 Jul 2015
Modification date: 09 Jul 2015
Type: security
Affected Mageia releases : 5
CVE: CVE-2015-3236 , CVE-2015-3237

Description

libcurl can wrongly send HTTP credentials when re-using connections. Even
if the handle for an HTTP connection is reset, it retains the credentials,
which can cause them to be unintentionally leaked in subsequent requests
(CVE-2015-3236).

libcurl can get tricked by a malicious SMB server to send off data it did
not intend to. A malicious SMB server can use this to access arbitrary
process memory, or to crash the client, causing a denial of service
(CVE-2015-3237).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=16140
• http://curl.haxx.se/docs/adv_20150617A.html
• http://curl.haxx.se/docs/adv_20150617B.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3236
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3237

SRPMS

5/core

• curl-7.40.0-3.1.mga5