CVE-2018-16840
4.3
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Summary
A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the Curl_close() function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| The Curl Project | curl | from 7.59.0 to 7.61.1 | affected |
Weaknesses
- CWE-416: CWE-416
ADP Enrichment
CVE Program Container
Additional References
- https://security.gentoo.org/glsa/201903-03
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16840
- https://github.com/curl/curl/commit/81d135d67155c5295b1033679c606165d4e28f3f
- http://www.securitytracker.com/id/1042013
- https://curl.haxx.se/docs/CVE-2018-16840.html
- https://usn.ubuntu.com/3805-1/
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://security.gentoo.org/glsa/201903-03
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16840
- https://github.com/curl/curl/commit/81d135d67155c5295b1033679c606165d4e28f3f
- http://www.securitytracker.com/id/1042013
- https://curl.haxx.se/docs/CVE-2018-16840.html
- https://usn.ubuntu.com/3805-1/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.