Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Curl | Haxx | 7.52.0 (including) | 7.65.3 (including) |
Red Hat Enterprise Linux 8 | RedHat | curl-0:7.61.1-12.el8 | * |
Curl | Ubuntu | bionic | * |
Curl | Ubuntu | devel | * |
Curl | Ubuntu | disco | * |
Curl | Ubuntu | trusty | * |