CVE-2019-5436

Priority
Description
A heap buffer overflow in the TFTP receiving code allows for DoS or
arbitrary code execution in libcurl versions 7.19.4 through 7.64.1.
Assigned-to
mdeslaur
Notes
Package
Source: curl (LP Ubuntu Debian)
Upstream:released (7.65.0)
Ubuntu 12.04 ESM (Precise Pangolin):released (7.22.0-3ubuntu4.26)
Ubuntu 14.04 ESM (Trusty Tahr):released (7.35.0-1ubuntu2.20+esm2)
Ubuntu 16.04 LTS (Xenial Xerus):released (7.47.0-1ubuntu2.13)
Ubuntu 18.04 LTS (Bionic Beaver):released (7.58.0-2ubuntu3.7)
More Information

Updated: 2020-09-10 06:31:53 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)