curl / Docs / Vulnerability table / 7.55.0 vulnerabilities

Vulnerabilities in curl 7.55.0

curl version 7.55.0 was released on August 9 2017. The following 6 security problems are known to exist in this version.

FlawFrom versionTo and includingCVE
HTTP authentication leak in redirects6.07.57.0CVE-2018-1000007
HTTP/2 trailer out-of-bounds read7.49.07.57.0CVE-2018-1000005
FTP wildcard out of bounds read7.21.07.56.1CVE-2017-8817
NTLM buffer overflow via integer overflow7.36.07.56.1CVE-2017-8816
IMAP FETCH response out of bounds read7.20.07.56.0CVE-2017-1000257
FTP PWD response parser out of bounds read7.77.55.1CVE-2017-1000254

Changelog for curl 7.55.0

See vulnerability summary for the previous release: 7.54.1 or the subsequent release: 7.55.1