VDB

GCVE-VVD-MAGEIA-2019-337

GCVE-VVD-MAGEIA-2019-337
Advisory Published
Vulnetix · Advisory published November 30, 2019
The updated packages fix security vulnerabilities: An integer overflow in curl's URL API results in a buffer overflow in libcurl 7.62.0 to and including 7.64.1. (CVE-2019-5435) A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1 (CVE-2019-5436). Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3 (CVE-2019-5481). Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3 (CVE-2019-5482).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiacurl0 (affected), 7.66.0-1.mga7 (unaffected)

References

Updated curl packages fix security vulnerabilities
advisory
Updated curl packages fix security vulnerabilities
issue
Updated curl packages fix security vulnerabilities
issue
Updated curl packages fix security vulnerabilities
issue
Updated curl packages fix security vulnerabilities
issue
Updated curl packages fix security vulnerabilities
issue
Updated curl packages fix security vulnerabilities
issue
Updated curl packages fix security vulnerabilities
issue
Updated curl packages fix security vulnerabilities
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›