curl / Docs / Vulnerability table / 6.3.1 vulnerabilities

Vulnerabilities in curl 6.3.1

curl version 6.3.1 was released on November 23 1999. The following 5 security problems are known to exist in this version.

FlawFrom versionTo and includingCVE
HTTP authentication leak in redirects6.07.57.0CVE-2018-1000007
URL request injection6.07.39.0CVE-2014-8150
cookie domain tailmatch6.07.29.0CVE-2013-1944
Arbitrary File Access6.07.19.3CVE-2009-0037
FTP Server Response Buffer Overflow6.07.4

Changelog for curl 6.3.1

See vulnerability summary for the previous release: 6.3 or the subsequent release: 6.4