Search CVE reports
1 – 10 of 49124 results
When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, libcurl could leak the password used for the first host to the followed-to host under certain circumstances. Similar to CVE-2024-11053.
1 affected package
curl
| Package | 16.04 |
|---|---|
| curl | Vulnerable |
Using libcurl, when a custom `Host:` header is first set for a HTTP request and a second request is subsequently done using the same *easy handle* but without the custom `Host:` header set, the second request would use...
1 affected package
curl
| Package | 16.04 |
|---|---|
| curl | Not affected |
curl might erroneously pass on credentials for a first proxy to a second proxy.
1 affected package
curl
| Package | 16.04 |
|---|---|
| curl | Vulnerable |
libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers.
1 affected package
curl
| Package | 16.04 |
|---|---|
| curl | Vulnerable |
libcurl might in some circumstances reuse the wrong connection when asked to do an authenticated HTTP(S) request after a Negotiate-authenticated one, when both use the same host.
1 affected package
curl
| Package | 16.04 |
|---|---|
| curl | Vulnerable |
A vulnerability exists where a connection requiring TLS incorrectly reuses an existing unencrypted connection from the same connection pool. If an initial transfer is made in clear-text (via IMAP, SMTP, or POP3), a subsequent...
1 affected package
curl
| Package | 16.04 |
|---|---|
| curl | Vulnerable |
Possible OOB read/write with SPA authenticator
1 affected package
exim4
| Package | 16.04 |
|---|---|
| exim4 | Needs evaluation |
Possible OOB read with large UTF8 trailing characters
1 affected package
exim4
| Package | 16.04 |
|---|---|
| exim4 | Needs evaluation |
Possible OOB read/write on corrupt JSON in header
1 affected package
exim4
| Package | 16.04 |
|---|---|
| exim4 | Needs evaluation |
Possible crash with malicious DNS data when using musl libc
1 affected package
exim4
| Package | 16.04 |
|---|---|
| exim4 | Not affected |