VDB

GCVE-110-MAGEIA-2015-20

GCVE-110-MAGEIA-2015-20
Advisory Published
Vulnetix · Advisory published January 9, 2015
Updated curl packages fix security vulnerability: When libcurl sends a request to a server via a HTTP proxy, it copies the entire URL into the request and sends if off. If the given URL contains line feeds and carriage returns those will be sent along to the proxy too, which allows the program to for example send a separate HTTP request injected embedded in the URL (CVE-2014-8150).

Affected Products

VendorProductVersionsPlatforms
Mageiacurl0 (affected), 7.34.0-1.5.mga4 (unaffected), 7.34.0-1.5.mga4 (unaffected), 0 (affected)
Mageialibreoffice0 (affected), 4.3.6.1-4.mga4 (unaffected)

Browse GCVE Records

73,280 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›