Debian Security Advisory
DLA-1498-1 curl -- LTS security update
- Date Reported:
- 08 Sep 2018
- Affected Packages:
- curl
- Vulnerable:
- Yes
- Security database references:
- In Mitre's CVE dictionary: CVE-2018-14618, CVE-2018-14618.
- More information:
-
It was discovered that there was a an integer overflow vulnerability in curl, a command line tool for transferring data over HTTP, etc.
For more information, please see:
https://curl.haxx.se/docs/CVE-2018-14618.html
For Debian 8
Jessie
, this issue has been fixed in curl version 7.38.0-4+deb8u12.We recommend that you upgrade your curl packages.