curl / Docs / Vulnerability table / 7.60.0 vulnerabilities

Vulnerabilities in curl 7.60.0

curl version 7.60.0 was released on May 16 2018. The following 2 security problems are known to exist in this version.

FlawFrom versionTo and includingCVECWE
NTLM password overflow via integer overflow7. Incorrect Calculation of Buffer Size
SMTP send heap buffer overflow7. Heap-based Buffer Overflow

Changelog for curl 7.60.0

See vulnerability summary for the previous release: 7.59.0 or the subsequent release: 7.61.0