First published: Fri Aug 04 2017(Updated: )
curl. An out-of-bounds read was addressed with improved bounds checking.
Credit: Brian Carpenter Yongji Ouyang cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/curl | <7.55.0 | 7.55.0 |
Apple macOS High Sierra | <10.13.1 | 10.13.1 |
Apple Sierra | ||
Apple El Capitan | ||
Haxx Curl | =7.4.1 | |
Haxx Curl | =7.35.0 | |
Haxx Curl | =7.36.0 | |
Haxx Curl | =7.37.0 | |
Haxx Curl | =7.37.1 | |
Haxx Curl | =7.38.0 | |
Haxx Curl | =7.39.0 | |
Haxx Curl | =7.40.0 | |
Haxx Curl | =7.41.0 | |
Haxx Curl | =7.42.0 | |
Haxx Curl | =7.42.1 | |
Haxx Curl | =7.43.0 | |
Haxx Curl | =7.44.0 | |
Haxx Curl | =7.45.0 | |
Haxx Curl | =7.46.0 | |
Haxx Curl | =7.47.0 | |
Haxx Curl | =7.47.1 | |
Haxx Curl | =7.48.0 | |
Haxx Curl | =7.49.0 | |
Haxx Curl | =7.49.1 | |
Haxx Curl | =7.50.0 | |
Haxx Curl | =7.50.1 | |
Haxx Curl | =7.50.2 | |
Haxx Curl | =7.50.3 | |
Haxx Curl | =7.51.0 | |
Haxx Curl | =7.52.0 | |
Haxx Curl | =7.52.1 | |
Haxx Curl | =7.53.0 | |
Haxx Curl | =7.53.1 | |
Haxx Curl | =7.54.0 | |
Haxx Curl | =7.54.1 | |
Haxx Curl | =7.55.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2017-1000101 is a vulnerability in curl that allows an out-of-bounds read.
CVE-2017-1000101 allows curl to read a byte beyond the end of the URL if given a carefully crafted URL.
The severity of CVE-2017-1000101 is medium with a score of 6.5.
To fix CVE-2017-1000101, update curl to version 7.55.0 or apply the necessary patches provided by the vendor.
You can find more information about CVE-2017-1000101 at the following references: [1] [2] [3]