cURL / Mailing Lists / curl-library / Single Mail

curl-library

Is my (lib)curl vulnerable?

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Mon, 20 Mar 2006 16:30:15 +0100 (CET)

Today's security advisory is the 7th publicly announced security flaw in curl
and libcurl.

To help you figure out which of these vulnerabilities you should be concerned
about, I've created a little table:

http://curl.haxx.se/docs/vulnerabilities.html

NOTICE! Most linux distros and other parties that distribute curl and libcurl
packages do so with a set of custom patches applied (like for example security
related patches!). If you are using a (lib)curl installed from a package
provided from somewhere or someone else than from the curl project itself, you
will need to check how your version deviates from the public "original"
version as shipped and released by our project.

-- 
  Commercial curl and libcurl Technical Support: http://haxx.se/curl.html

Received on 2006-03-20

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: ftp.c ignores some SSL errors regardless of the curl_ftpssl setting"
Previous message: Nilesh: "Re: Patch for CURLOPT_CONNECT_ONLY"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]