Vulnerability Bulletins |
Desbordamiento de búfer en libcurl |
|
Vulnerability classification |
|
Property | Value |
Confidence level | Oficial |
Impact | Obtener acceso |
Dificulty | Experto |
Required attacker level | Acceso remoto sin cuenta a un servicio exotico |
System information |
|
Property | Value |
Affected manufacturer | GNU/Linux |
Affected software | libcurl <= 7.13.2 |
Description |
|
Se ha descubierto una vulnerabilidad de desbordamiento de búfer en libcurl igual o anterior a 7.13.2 y en programas que usan esta librería. La vulnerabilidad reside en la función "ntlm_output" en http-ntlm.c no valida correctamente ciertos parámetros. Un atacante remoto podría ejecutar código arbitrario mediante un nombre de usuario o de dominio especialmente largo en la autenticación NTLM. |
|
Solution |
|
Actualización de software Mandriva Mandrakelinux 10.1 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/curl-7.12.1-1.2.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/libcurl3-7.12.1-1.2.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/libcurl3-devel-7.12.1-1.2.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/SRPMS/curl-7.12.1-1.2.101mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/curl-7.12.1-1.2.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/lib64curl3-7.12.1-1.2.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/lib64curl3-devel-7.12.1-1.2.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/SRPMS/curl-7.12.1-1.2.101mdk.src.rpm Corporate Server 3.0 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/RPMS/curl-7.11.0-2.2.C30mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/RPMS/libcurl2-7.11.0-2.2.C30mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/RPMS/libcurl2-devel-7.11.0-2.2.C30mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/SRPMS/curl-7.11.0-2.2.C30mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/RPMS/curl-7.11.0-2.2.C30mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/RPMS/lib64curl2-7.11.0-2.2.C30mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/RPMS/lib64curl2-devel-7.11.0-2.2.C30mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/SRPMS/curl-7.11.0-2.2.C30mdk.src.rpm Multi Network Firewall 2.0 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/mnf/2.0/RPMS/curl-7.11.0-2.2.M20mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/mnf/2.0/RPMS/libcurl2-7.11.0-2.2.M20mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/mnf/2.0/SRPMS/curl-7.11.0-2.2.M20mdk.src.rpm Mandrivalinux LE2005 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.2/RPMS/curl-7.13.1-2.1.102mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.2/RPMS/libcurl3-7.13.1-2.1.102mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.2/RPMS/libcurl3-devel-7.13.1-2.1.102mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.2/SRPMS/curl-7.13.1-2.1.102mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.2/RPMS/curl-7.13.1-2.1.102mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.2/RPMS/lib64curl3-7.13.1-2.1.102mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.2/RPMS/lib64curl3-devel-7.13.1-2.1.102mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.2/SRPMS/curl-7.13.1-2.1.102mdk.src.rpm Mandrivalinux 2006 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/RPMS/curl-7.14.0-2.1.20060mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/RPMS/libcurl3-7.14.0-2.1.20060mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/RPMS/libcurl3-devel-7.14.0-2.1.20060mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/SRPMS/curl-7.14.0-2.1.20060mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/2006.0/RPMS/curl-7.14.0-2.1.20060mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/2006.0/RPMS/lib64curl3-7.14.0-2.1.20060mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/2006.0/RPMS/lib64curl3-devel-7.14.0-2.1.20060mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/2006.0/SRPMS/curl-7.14.0-2.1.20060mdk.src.rpm Mandriva (wget) Mandrivalinux 2006 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/RPMS/wget-1.10-1.1.20060mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/SRPMS/wget-1.10-1.1.20060mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/2006.0/RPMS/wget-1.10-1.1.20060mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/2006.0/SRPMS/wget-1.10-1.1.20060mdk.src.rpm Suse SUSE LINUX 10.0 / x86 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/compat-curl2-7.11.0-7.2.i586.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/curl-7.14.0-2.2.i586.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/wget-1.10.1-2.2.i586.rpm SUSE LINUX 10.0 / Power PC ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/compat-curl2-7.11.0-7.2.ppc.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/curl-7.14.0-2.2.ppc.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/wget-1.10.1-2.2.ppc.rpm SUSE LINUX 10.0 / x86-64 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/compat-curl2-32bit-7.11.0-7.2.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/compat-curl2-7.11.0-7.2.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/curl-32bit-7.14.0-2.2.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/curl-7.14.0-2.2.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/wget-1.10.1-2.2.x86_64.rpm SUSE LINUX 10.0 / Sources ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/compat-curl2-7.11.0-7.2.src.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/curl-7.14.0-2.2.src.rpm ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/wget-1.10.1-2.2.src.rpm SUSE LINUX 9.3 / x86 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/compat-curl2-7.11.0-6.2.i586.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/curl-7.13.0-5.2.i586.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/wget-1.10-1.3.i586.rpm SUSE LINUX 9.3 / x86-64 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/compat-curl2-32bit-9.3-7.1.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/compat-curl2-7.11.0-6.2.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/curl-32bit-9.3-7.1.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/curl-7.13.0-5.2.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/wget-1.10-1.3.x86_64.rpm SUSE LINUX 9.3 / Sources ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/compat-curl2-7.11.0-6.2.src.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/curl-7.13.0-5.2.src.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/wget-1.10-1.3.src.rpm SUSE LINUX 9.2 / x86 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/compat-curl2-7.11.0-4.4.i586.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/curl-7.12.0-2.4.i586.rpm SUSE LINUX 9.2 / x86-64 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/compat-curl2-32bit-9.2-200510171251.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/compat-curl2-7.11.0-4.4.x86_64.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/curl-7.12.0-2.4.x86_64.rpm SUSE LINUX 9.2 / Sources ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/compat-curl2-7.11.0-4.4.src.rpm ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/curl-7.12.0-2.4.src.rpm SUSE LINUX 9.1 / x86 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/curl-7.11.0-39.9.i586.rpm ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/i586/curl-32bit-9.1-200510171252.i586.rpm SUSE LINUX 9.1 / x86-64 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/curl-7.11.0-39.9.x86_64.rpm SUSE LINUX 9.1 / Sources ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/curl-7.11.0-39.9.src.rpm ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/curl-7.11.0-39.9.src.rpm Red Hat (wget) Red Hat Desktop (v. 3) Red Hat Desktop (v. 4) Red Hat Enterprise Linux AS (v. 2.1) Red Hat Enterprise Linux AS (v. 3) Red Hat Enterprise Linux AS (v. 4) Red Hat Enterprise Linux ES (v. 2.1) Red Hat Enterprise Linux ES (v. 3) Red Hat Enterprise Linux ES (v. 4) Red Hat Enterprise Linux WS (v. 2.1) Red Hat Enterprise Linux WS (v. 3) Red Hat Enterprise Linux WS (v. 4) Red Hat Linux Advanced Workstation 2.1 Itanium https://rhn.redhat.com/ Red Hat (curl) Red Hat Desktop (v. 3) Red Hat Desktop (v. 4) Red Hat Enterprise Linux AS (v. 3) Red Hat Enterprise Linux AS (v. 4) Red Hat Enterprise Linux ES (v. 3) Red Hat Enterprise Linux ES (v. 4) Red Hat Enterprise Linux WS (v. 3) Red Hat Enterprise Linux WS (v. 4) https://rhn.redhat.com/ SGI Advanced Linux Environment 3 / RPM / Patch 10242 ftp://oss.sgi.com/projects/sgi_propack/download/3/updates/RPMS Advanced Linux Environment 3 / SRPM / Patch 10242 ftp://oss.sgi.com/projects/sgi_propack/download/3/updates/SRPMS Apple Tiger Client http://www.apple.com/support/downloads/securityupdate2005009tigerclient.html Tiger Server http://www.apple.com/support/downloads/securityupdate2005009tigerserver.html Panther Client http://www.apple.com/support/downloads/securityupdate2005009pantherclient.html Panther Server http://www.apple.com/support/downloads/securityupdate2005009pantherserver.html Debian Debian Linux 3.0 Source http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1.dsc http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1.diff.gz http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5.orig.tar.gz Alpha http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_alpha.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_alpha.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_alpha.deb ARM http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_arm.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_arm.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_i386.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_i386.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_ia64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_ia64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_ia64.deb HP Precision http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_hppa.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_hppa.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_m68k.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_m68k.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_mips.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_mips.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_mipsel.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_mipsel.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_powerpc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_powerpc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_s390.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_s390.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/c/curl/curl_7.9.5-1woody1_sparc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl-dev_7.9.5-1woody1_sparc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl2_7.9.5-1woody1_sparc.deb Debian Linux 3.1 Source http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4.dsc http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4.diff.gz http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2.orig.tar.gz Alpha http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_alpha.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_alpha.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_alpha.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_alpha.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_alpha.deb AMD64 http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_amd64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_amd64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_amd64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_amd64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_amd64.deb ARM http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_arm.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_arm.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_arm.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_arm.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_i386.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_i386.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_i386.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_i386.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_ia64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_ia64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_ia64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_ia64.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_ia64.deb HP Precision http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_hppa.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_hppa.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_hppa.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_hppa.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_m68k.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_m68k.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_m68k.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_m68k.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_mips.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_mips.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_mips.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_mips.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_mipsel.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_mipsel.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_mipsel.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_mipsel.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_powerpc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_powerpc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_powerpc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_powerpc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_s390.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_s390.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_s390.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_s390.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/c/curl/curl_7.13.2-2sarge4_sparc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3_7.13.2-2sarge4_sparc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dbg_7.13.2-2sarge4_sparc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-dev_7.13.2-2sarge4_sparc.deb http://security.debian.org/pool/updates/main/c/curl/libcurl3-gssapi_7.13.2-2sarge4_sparc.deb SCO OpenServer 5.0.6 ftp://ftp.sco.com/pub/openserver5/opensrc/gwxlibs-2.1.0Ba/gwxlibs210Ba_vol.tar OpenServer 5.0.7 ftp://ftp.sco.com/pub/openserver5/507/mp/osr507mp4/osr507mp4_vol.tar OpenServer 6.0.0 ftp://ftp.sco.com/pub/openserver6/600/mp/osr600mp2/osr600mp2.iso |
|
Standar resources |
|
Property | Value |
CVE | CAN-2005-3185 |
BID | |
Other resources |
|
Mandriva Security Advisory (MDKSA-2005:182) http://www.mandriva.com/security/advisories?name=MDKSA-2005:182 Mandriva Security Advisory (MDKSA-2005:183) http://www.mandriva.com/security/advisories?name=MDKSA-2005:183 SUSE Security Advisory (SUSE-SA:2005:063) http://www.novell.com/linux/security/advisories/2005_63_wget_curl.html SUSE Security Advisory (SUSE-SR:2005:025) http://www.novell.com/linux/security/advisories/2005_25_sr.html Red Hat Security Advisory (RHSA-2005:812-5) https://rhn.redhat.com/errata/RHSA-2005-812.html Red Hat Security Advisory (RHSA-2005:807-6) https://rhn.redhat.com/errata/RHSA-2005-807.html SGI Security Advisory (20051101-01-U) ftp://patches.sgi.com/support/free/security/advisories/20051101-01-U.asc Apple Security Update (2005-009) http://docs.info.apple.com/article.html?artnum=302847 Debian Security Advisory (DSA 919-1) http://lists.debian.org/debian-security-announce/debian-security-announce-2005/msg00320.html SCO Security Advisory (SCOSA-2006.10) ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txt |
Version history |
||
Version | Comments | Date |
1.0 | Aviso emitido | 2005-10-18 |
1.1 | Aviso emitido por Suse (SUSE-SA:2005:063) | 2005-10-25 |
1.2 | Avisos emitidos por Red Hat (RHSA-2005:812-5, RHSA-2005:807-6) | 2005-11-03 |
1.3 | Aviso actualizado por Suse (SUSE-SR:2005:025) | 2005-11-14 |
1.4 | Aviso emitido por SGI (20051101-01-U). Aviso emitido por Apple (2005-009) | 2005-11-30 |
1.5 | Aviso emitido por Debian (DSA 919-1) | 2005-12-13 |
1.6 | Aviso emitido por SCO (SCOSA-2006.10) | 2006-03-15 |