CVE-2016-7167: Buffer Overflow
First published: Wed Sep 14 2016(Updated: )
Multiple integer overflows in the (1) curl_escape, (2) curl_easy_escape, (3) curl_unescape, and (4) curl_easy_unescape functions in libcurl before 7.50.3 allow attackers to have unspecified impact via a string of length 0xffffffff, which triggers a heap-based buffer overflow.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/curl | <7.50.3 | 7.50.3 |
| Fedoraproject Fedora | =23 | |
| Fedoraproject Fedora | =24 | |
| Fedoraproject Fedora | =25 | |
| libcurl 3 with GnuTLS support | <=7.50.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.securityfocus.com/bid/92975
- http://www.securitytracker.com/id/1036813
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.538632
- https://access.redhat.com/errata/RHSA-2017:2016
- https://access.redhat.com/errata/RHSA-2018:2486
- https://access.redhat.com/errata/RHSA-2018:3558
- https://curl.haxx.se/docs/adv_20160914.html
- https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B3IU2FRXQNU6UJIQT4NGLWWTP2GJQXO7/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTH54DFOS4TSYPG5XKJDGAG4XPAR4T7M/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZMRWVISG7VUCYRMF23A2UHMYD72VQWAK/
- https://security.gentoo.org/glsa/201701-47
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1375907
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1375908
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1375909
- https://curl.haxx.se/CVE-2016-7167.patch
- https://bugzilla.redhat.com/show_bug.cgi?id=1375906
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZMRWVISG7VUCYRMF23A2UHMYD72VQWAK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3IU2FRXQNU6UJIQT4NGLWWTP2GJQXO7/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTH54DFOS4TSYPG5XKJDGAG4XPAR4T7M/
Frequently Asked Questions
What is the severity of CVE-2016-7167?
CVE-2016-7167 is classified as a high severity vulnerability due to its potential to cause heap-based buffer overflows.
How do I fix CVE-2016-7167?
To fix CVE-2016-7167, upgrade libcurl to version 7.50.3 or later.
What impact can CVE-2016-7167 have on my system?
CVE-2016-7167 can allow attackers to exploit vulnerabilities in libcurl functions, potentially leading to arbitrary code execution.
What versions of libcurl are affected by CVE-2016-7167?
CVE-2016-7167 affects libcurl versions prior to 7.50.3.
Which software packages are impacted by CVE-2016-7167?
CVE-2016-7167 impacts curl packages on Red Hat and various versions of Fedora.
- agent/type
- agent/first-publish-date
- agent/severity
- agent/author
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-7167
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/23
- version/fedoraproject fedora/24
- version/fedoraproject fedora/25
- vendor/haxx
- canonical/libcurl 3 with gnutls support
- version/libcurl 3 with gnutls support/7.50.2